rocktronica/OneFileCMS

rocktronica/OneFileCMS

Releases0

Stars28

A CMS (err, text editor and file manager) all in one file.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-12993 ↗	Jun 29, 2018Friday, 29 June 2018, 12:29	—	5 MEDIUM
onefilecms.php in OneFileCMS through 2012-04-14 might allow attackers to conduct brute-force attacks via the onefilecms_username and onefilecms_password fields.
CVE-2018-12994 ↗	Jun 29, 2018Friday, 29 June 2018, 12:29	—	6.5 MEDIUM
onefilecms.php in OneFileCMS through 2012-04-14 might allow attackers to execute arbitrary PHP code via a .php filename on the New File screen.
CVE-2018-12995 ↗	Jun 29, 2018Friday, 29 June 2018, 12:29	—	6.5 MEDIUM
onefilecms.php in OneFileCMS through 2012-04-14 might allow attackers to execute arbitrary PHP code via a .php filename on the Upload screen.