Vulnerability CVE-2018-10133


Published: 2018-04-16

Description:
PbootCMS v0.9.8 allows PHP code injection via an IF label in index.php/About/6.html or admin.php/Site/index.html, related to the parserIfLabel function in \apps\home\controller\ParserController.php.

 References:
https://github.com/vQAQv/Request-CVE-ID-PoC/blob/master/PbootCMS/v0.9.8/Getshll.md

Copyright 2018, cxsecurity.com

 

Back to Top