CVE-2019-11401

Posted on by admin

CVE-2019-11401

A issue was discovered in SiteServer CMS 6.9.0. It allows remote attackers to execute arbitrary code because an administrator can add the permitted file extension .aassp, which is converted to .asp because the "as" substring is deleted.

Source: CVE-2019-11401

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다