concrete5/concrete5 is vulnerable to arbitrary code execution. The vulnerability exists as the File Manager does not restrict file types, such as .php
files, which may be executed when loaded.
CPE | Name | Operator | Version |
---|---|---|---|
concrete5/concrete5 | le | 8.5.2 | |
concrete5/concrete5 | le | 8.5.2 |