CVE-2018-17984

Posted on 2018년 10월 5일2018년 10월 5일 by admin

CVE-2018-17984

An unanchored /[a-z]{2}/ regular expression in ISPConfig before 3.1.13 makes it possible to include arbitrary files, leading to code execution. This is exploitable by authenticated users who have local filesystem access.

Source: CVE-2018-17984

답글 남기기 응답 취소