Skip to main content

Coscms

1 CVEs product

Monthly

CVE-2013-1668 HIGH POC This Week

The uploadFile function in upload/index.php in CosCMS before 1.822 allows remote administrators to execute arbitrary commands via shell metacharacters in the name of an uploaded file. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Command Injection PHP Coscms
NVD Exploit-DB GitHub
CVSS 2.0
8.5
EPSS
9.1%
EPSS 9% CVSS 8.5
HIGH POC This Week

The uploadFile function in upload/index.php in CosCMS before 1.822 allows remote administrators to execute arbitrary commands via shell metacharacters in the name of an uploaded file. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Command Injection PHP Coscms
NVD Exploit-DB GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy