Uncategorized

CVE-2019-11377

- April 20, 2019 - admin

wcms/wex/finder/action.php in WCMS v0.3.2 has a Arbitrary File Upload Vulnerability via developer/finder because .php is a valid extension according to the fm_get_text_exts function.
Source: NIST
CVE-2019-11377

Leave a Reply

Your email address will not be published. Required fields are marked *

About This Site

Dedicated to all things security.