Severity:
HIGH RISK
(8.8)
Code Injection (CWE-94) via Module Parameters in Evolution CMS
CVE-2021-47939
Published:
Status:
Received
Summary
Affected Context
Exploit Preconditions
Why This Happens
Potential Impact
General Mitigation Guidance
How Teams Detect Issues Like This
Frequently Asked Questions
Source
NDV
Recent Vulnerabilities
CWE-94
(8.8)
PHP Code Injection via File Upload (CWE-94) in Aero CMS Admin Post Creation
Remote Code Execution by authenticated users via malicious file upload
CWE-306
(9.8)
Missing Authentication (CWE-306) Leading to Remote Code Execution in OpenCATS Resume Uploads
Remote Code Execution by Unauthenticated Attackers
