05 Avr 2019
Vulnérabilité CVE-2019-10874 CVE Vulnerability
Cross Site Request Forgery (CSRF) in the bolt/upload File Upload feature in Bolt CMS 3.6.6 allows remote attackers to execute arbitrary code by uploading a JavaScript file to include executable extensions in the file/edit/config/config.yml configuration file. (CVSS:6.8) (Last Update:2019-04-08)
Vulnerability Details : Cross Site Request Forgery (CSRF) in the bolt/upload File Upload feature in Bolt CMS 3.6.6 allows remote attackers to execute arbitrary code by uploading a JavaScript file to include executable extensions in the file/edit/config/config.yml configuration file. Publish Date : 2019-04-05 Last Update Date : 2019-04-08 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-10874
- Number Of Affected Versions By Product
- References For CVE-2019-10874 | ||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-10874There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |