CVE-2018-19220
LAOBANCMS 2.0 is affected by an arbitrary PHP code execution flaw that can be triggered by the host parameter to the install/ URI. The issue is remote, unauthenticated, and exploitable over network with the potential for high impact (per CVSSv3.0: CRITICAL, 9.8; Confidentiality/Integrity/Availabi...