Security Advisory

CVE-2019-10015

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-24 21:03:06

Last updated 2024-08-04 22:10:08

Assigner mitre

State PUBLISHED

Description

baigoStudio baigoSSO v3.0.1 allows remote attackers to execute arbitrary PHP code via the first form field of a configuration screen, because this code is written to the BG_SITE_NAME field in the opt_base.inc.php file.

← Browse all CVEs View on cve.org ↗