Lucene search

K
osvGoogleOSV:CVE-2018-19422
HistoryNov 21, 2018 - 9:29 p.m.

CVE-2018-19422

2018-11-2121:29:00
Google
osv.dev
4

7.7 High

AI Score

Confidence

Low

0.845 High

EPSS

Percentile

98.5%

/panel/uploads in Subrion CMS 4.2.1 allows remote attackers to execute arbitrary PHP code via a .pht or .phar file, because the .htaccess file omits these.

7.7 High

AI Score

Confidence

Low

0.845 High

EPSS

Percentile

98.5%