2019-03-06 22:00:00
mitre
PUBLISHED
An issue was discovered in OFCMS before 1.1.3. A command execution vulnerability exists via a template file with <#assign ex="freemarker.template.utility.Execute"?new()> ${ ex(" followed by the command.