CVE-2014-10074

Publication date

2018-08-27 04:00:00

Family

mitre

State

PUBLISHED

Description

Umbraco before 7.2.0 has a remote PHP code execution vulnerability because Umbraco.Web.UI/config/umbracoSettings.Release.config does not block the upload of .php files.