2018-09-02 18:00:00
mitre
PUBLISHED
SeaCMS 6.61 allows remote attackers to execute arbitrary code because parseIf() in include/main.class.php does not block use of $GLOBALS.