3 matches found
CVE-2020-36037
An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php...
CVE-2020-36037
An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php...
CVE-2020-36037
WUZHI CMS 4.1.0 contains a vulnerability in the ueditor setting parameter in index.php that allows remote attackers to execute arbitrary code. Root cause relates to unsafely processed input leading to code execution; CVSSv3.1 metrics show a high impact with network access, required privileges low...