CVE-2019-12169

Posted on by admin

CVE-2019-12169

ATutor 2.2.4 allows Arbitrary File Upload and Directory Traversal, resulting in remote code execution via a ".." pathname in a ZIP archive to the mods/_core/languages/language_import.php (aka Import New Language) or mods/_standard/patcher/index_admin.php (aka Patcher) component.

Source: CVE-2019-12169

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다