Security Advisory

CVE-2019-11376

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-04-20 14:35:52

Last updated 2024-11-15 15:05:29

Assigner mitre

State PUBLISHED

Description

SOY CMS v3.0.2 allows remote attackers to execute arbitrary PHP code via a <?php substring in the second text box. NOTE: the vendor indicates that there was an assumption that the content is "made editable on its own.

← Browse all CVEs View on cve.org ↗