2017-11-17 02:00:00
mitre
PUBLISHED
October CMS build 412 is vulnerable to PHP object injection in asset move functionality resulting in ability to delete files limited by file permissions on the server.