CVE-2017-11366

components/filemanager/class.filemanager.php in Codiad before 2.8.4 is vulnerable to remote command execution because shell commands can be embedded in parameter values, as demonstrated by search_file_type.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:codiad:codiad:*:*:*:*:*:*:*:*

Information

Published : 2017-08-20 18:29

Updated : 2019-10-02 17:03


NVD link : CVE-2017-11366

Mitre link : CVE-2017-11366


JSON object : View

CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Advertisement

dedicated server usa

Products Affected

codiad

  • codiad