CVE-2020-18890
Published
CVSS v3
9.8
CRITICAL
CVSS v2
7.5
HIGH
Affected
1
PROJECT
Description
Rmote Code Execution (RCE) vulnerability in puppyCMS v5.1 due to insecure permissions, which could let a remote malicious user getshell via /admin/functions.php.
Tiny, simple, flat file CMS in PHP that is SEO friendly and responsive. There's no database for this easy content management system and templates are gorgeous. Build micro sites, simple blogs by using Markdown and the included file manager. Tags:small, nano, lightweight, content management system, search engine optimization
GitHub