CVE-2017-11585

Publication date

2017-07-24 00:00:00

Family

mitre

State

PUBLISHED

Description

dayrui FineCms 5.0.9 has remote PHP code execution via the param parameter in an action=cache request to libraries/Template.php, aka Eval Injection.