03 Aoû 2018
CVE-2018-14910 - CVE Vulnerability
SeaCMS v6.61 allows Remote Code execution by placing PHP code in an allowed IP address (aka ip) to /admin/admin_ip.php (aka /adm1n/admin_ip.php). The code is executed by visiting adm1n/admin_ip.php or data/admin/ip.php. This can also be exploited through CSRF. (CVSS:0.0) (Last Update:2018-08-03)
Vulnerability Details : SeaCMS v6.61 allows Remote Code execution by placing PHP code in an allowed IP address (aka ip) to /admin/admin_ip.php (aka /adm1n/admin_ip.php). The code is executed by visiting adm1n/admin_ip.php or data/admin/ip.php. This can also be exploited through CSRF. Publish Date : 2018-08-03 Last Update Date : 2018-08-03 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2018-14910
- References For CVE-2018-14910
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2018-14910There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |