CVE-2017-1000194

Published November 17th, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

October CMS build 412 is vulnerable to Apache configuration modification via file upload functionality resulting in site compromise and possibly other applications on the server.

octobercms/october

Self-hosted CMS platform based on the Laravel PHP Framework.

GitHub

11.1K