CVE-2021-39608
Published
CVSS v3
7.2
HIGH
CVSS v2
9
HIGH
Affected
1
PROJECT
Description
Remote Code Execution (RCE) vulnerabilty exists in FlatCore-CMS 2.0.7 via the upload addon plugin, which could let a remote malicious user exeuct arbitrary php code.
flatCore is a Web Content Management System (CMS) based on PHP and MySQL/SQLite.
GitHub