CVE-2017-7694

2017-04-11T19:59:00
ID CVE-2017-7694
Type cve
Reporter NVD
Modified 2017-04-17T08:49:06

Description

Remote Code Execution vulnerability in symphony/content/content.blueprintsdatasources.php in Symphony CMS through 2.6.11 allows remote attackers to execute code and get a webshell from the back-end. The attacker must be authenticated and enter PHP code in the datasource editor or event editor.