Code Execution Vulnerability in ZhiCms V1.0.4

ZhiCms is an enterprise building system based on PHP and mysql technology. A code execution vulnerability exists in ZhiCms v1.0.4, which is due to the system failing to effectively filter input parameters. An attacker can exploit this vulnerability to write a Trojan horse and execute it to obtain...

PT-2019-13316 · Python · Python

Name of the Vulnerable Software and Affected Versions: Python versions prior to 2.7.17 Python versions 3.x prior to 3.5 Description: The MSI installer for Python on Windows defaults to the C:Python27 directory, making it easier for local users to deploy Trojan horse code. The vendor's position is...