CVE-2020-11011

Published April 22nd, 2020

View on NVD ↗

CVSS v3

9.9

CRITICAL

CVSS v2

6.5

MEDIUM

Affected

PROJECT

Description

In Phproject before version 1.7.8, there's a vulnerability which allows users with access to file uploads to execute arbitrary code. This is patched in version 1.7.8.

Alanaktion/phproject

A high performance full-featured project management system

GitHub

399