Lucene search

K
osvGoogleOSV:CVE-2018-19422
HistoryNov 21, 2018 - 9:29 p.m.

CVE-2018-19422

2018-11-2121:29:00
Google
osv.dev
8

AI Score

7.7

Confidence

Low

EPSS

0.855

Percentile

98.6%

/panel/uploads in Subrion CMS 4.2.1 allows remote attackers to execute arbitrary PHP code via a .pht or .phar file, because the .htaccess file omits these.