8.9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
44.9%
There is a CSRF in SDCMS V1.7 via an m=admin&c=theme&a=edit request. It allows PHP code injection by providing a filename in the file parameter, and providing file content in the t2 parameter.
www.iwantacve.cn/index.php/archives/156/