CVE-2021-36548

Publication date

2021-10-28 19:11:10

Family

mitre

State

PUBLISHED

Description

A remote code execution (RCE) vulnerability in the component /admin/index.php?id=themes&action=edit_template&filename=blog of Monstra v3.0.4 allows attackers to execute arbitrary commands via a crafted PHP file.