CVE-2017-1000196

Published November 17th, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

October CMS build 412 is vulnerable to PHP code execution in the asset manager functionality resulting in site compromise and possibly other applications on the server.

octobercms/october

Self-hosted CMS platform based on the Laravel PHP Framework.

GitHub

11.1K