Lucene search
Doccms Security Vulnerabilities
cve
upload_model() in /admini/controllers/system/managemodel.php in DocCms 2016.5.17 allow remote attackers to execute arbitrary PHP code through module management files, as demonstrated by a .php file in a ZIP...
9.8CVSS
8.4AI Score
0.019EPSS
2019-09-09 09:15 PM
130
cve
upload_template() in system/changeskin.php in DocCms 2016.5.12 allows remote attackers to execute arbitrary PHP code via a template...
9.8CVSS
8.3AI Score
0.015EPSS
2018-10-30 06:29 AM
18