메뉴 건너뛰기

GREATUSER

cve

CVE-2017-18048

관리자 2018.01.25 04:00 조회 수 : 10

Monstra CMS 3.0.4 allows users to upload arbitrary files, which leads to remote command execution on the server, for example because .php (lowercase) is blocked but .PHP (uppercase) is not.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-18048
위로