2 matches found
CVE-2019-15746
SITOS six Build v6.2.1 allows an attacker to inject arbitrary PHP commands. As a result, an attacker can compromise the running server and execute system commands in the context of the web user...
CVE-2019-15746
The CVE-2019-15746 entry concerns SITOS six Build v6.2.1, where an injection vulnerability allows an attacker to inject arbitrary PHP commands. The core issue described in connected sources is a lack of proper validation of user input, enabling execution of commands on the server within the web u...