05 Nov 2018
CVE-2018-18934 - CVE Vulnerability
An issue was discovered in PopojiCMS v2.0.1. admin_component.php is exploitable via the po-admin/route.php?mod=component&act=addnew URI by using the fupload parameter to upload a ZIP file containing arbitrary PHP code (that is extracted and can be executed). This can also be exploited via CSRF. (CVSS:0.0) (Last Update:2018-11-05)
Vulnerability Details : An issue was discovered in PopojiCMS v2.0.1. admin_component.php is exploitable via the po-admin/route.php?mod=component&act=addnew URI by using the fupload parameter to upload a ZIP file containing arbitrary PHP code (that is extracted and can be executed). This can also be exploited via CSRF. Publish Date : 2018-11-05 Last Update Date : 2018-11-05 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2018-18934
- References For CVE-2018-18934
| |||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2018-18934There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |