Ear Music
1 CVEs
product
Monthly
In Earcms Ear Music through 4.1 build 20170710, remote authenticated users can execute arbitrary PHP code by changing the allowable music-upload extensions to include .php in addition to .mp3 and. Rated high severity (CVSS 7.0). No vendor patch available.
PHP
File Upload
Ear Music
NVD
CVSS 3.0
7.0
EPSS
0.3%
EPSS 0%
CVSS 7.0
HIGH
This Week
In Earcms Ear Music through 4.1 build 20170710, remote authenticated users can execute arbitrary PHP code by changing the allowable music-upload extensions to include .php in addition to .mp3 and. Rated high severity (CVSS 7.0). No vendor patch available.
PHP
File Upload
Ear Music
NVD