CVE-2020-19142

Published December 10th, 2020

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

10

HIGH

Affected

1

PROJECT

Description

iCMS 7 attackers to execute arbitrary OS commands via shell metacharacters in the DB_PREFIX parameter to install/install.php.

idreamsoft/iCMS

iCMS 是一套采用 PHP 和 MySQL 构建的高效简洁的内容管理系统,为您的网站提供一个完美的开源解决方案

GitHub

15