Security Advisory

CVE-2021-36548

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-28 19:11:10
Last updated 2024-08-04 00:54:51
Assigner mitre
State PUBLISHED

Description

A remote code execution (RCE) vulnerability in the component /admin/index.php?id=themes&action=edit_template&filename=blog of Monstra v3.0.4 allows attackers to execute arbitrary commands via a crafted PHP file.