Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Jessgramp Subscribe
Filtered by product Minicms
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-5231 1 Jessgramp 1 Minicms 2017-08-28 7.5 HIGH N/A
miniCMS 1.0 and 2.0 allows remote attackers to execute arbitrary PHP code via a crafted (1) pagename or (2) area variable containing an executable extension, which is not properly handled by (a) update.php when writing files to content/, or (b) updatenews.php when writing files to content/news/.