CVE-2017-14958

2017-10-02T01:29:00
ID CVE-2017-14958
Type cve
Reporter cve@mitre.org
Modified 2017-10-06T16:49:00

Description

lib.php in PivotX 2.3.11 does not properly block uploads of dangerous file types by admin users, which allows remote PHP code execution via an upload of a .php file.