CVE-2017-1000197

2022-10-0316:23:09

mitre

www.cve.org

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.4%

JSON

October CMS build 412 is vulnerable to file path modification in asset move functionality resulting in creating creating malicious files on the server.

References

github.com/octobercms/october/compare/v1.0.412...v1.0.413#diff-eef90a4e3585febf6489916dc242d0ceR241