Name of the Vulnerable Software and Affected Versions 1С-Битрикс: Управление сайтом (affected versions not specified)

Description The issue is related to the UI module of the Битрикс24 business management service and the 1С-Битрикс site management system (CMS), which fails to protect the web page structure. This can be exploited by a remote attacker to execute arbitrary code by sending a specially crafted HTTP request.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.