2 matches found
CVE-2020-5203
In Fat-Free Framework 3.7.1, attackers can achieve arbitrary code execution if developers choose to pass user controlled input e.g., $REQUEST, $GET, or $POST to the framework's Clear method...
CVE-2020-5203
CVE-2020-5203 affects Fat-Free Framework 3.7.1. The vulnerability allows arbitrary code execution when developers pass user-controlled input (e.g., $_REQUEST, $_GET, or $_POST) to the framework’s Clear method. This is a remote, high-severity issue with reported CVSS scores indicating critical imp...