CVE-2020-10964

2020-03-25T22:15:00
ID CVE-2020-10964
Type cve
Reporter cve@mitre.org
Modified 2020-03-27T19:23:00

Description

Serendipity before 2.3.4 on Windows allows remote attackers to execute arbitrary code because the filename of a renamed file may end with a dot. This file may then be renamed to have a .php filename.