CVE-2017-8402
PivotX 2.3.11 is affected by an arbitrary PHP code execution vulnerability. The issue arises from a flaw that allows remote authenticated users to upload a .htaccess file to execute code on the server. Several sources in the connected set (CNVD-2017-11640, NVD entry) confirm PivotX 2.3.11 as the ...