3 matches found
CVE-2020-18048
An issue in craigms/main.php of CraigMS 1.0 allows attackers to execute arbitrary commands via a crafted input entered into the DB Name field...
CVE-2020-18048
An issue in craigms/main.php of CraigMS 1.0 allows attackers to execute arbitrary commands via a crafted input entered into the DB Name field...
CVE-2020-18048
The CVE-2020-18048 issue affects CraigMS 1.0 in the file craigms/main.php, where a crafted value entered into the DB Name field enables an attacker to execute arbitrary commands. Root cause: unsafe handling of input in the DB Name field leading to command execution. Impact: arbitrary commands on ...