CVE-2018-10740
Published
CVSS v3
N/A
CVSS v2
7.5
HIGH
Affected
1
PROJECT
Description
Axublog 1.1.0 allows remote Code Execution as demonstrated by injection of PHP code (contained in the webkeywords parameter) into the cmsconfig.php file.
axublog是一款免费小巧且强大的PHP+MySQL博客系统程序,全站静态生成html页面,丰富的模版和插件。Axublog is a free, compact and powerful PHP+MySQL blog system program, the whole station generates HTML pages, rich templates and plug-ins.
GitHub