2 matches found
CVE-2021-44892
A Remote Code Execution RCE vulnerability exists in ThinkPHP 3.x.x via valuefilename in index.php, which could let a malicious user obtain server control privileges...
CVE-2021-44892
ThinkPHP 3.x.x is affected by CVE-2021-44892 due to a vulnerability in value[_filename] processed by index.php, enabling a remote attacker to gain server control privileges. Affected component: ThinkPHP 3.x.x (via index.php). Root cause: improper handling of the filename parameter leading to RCE....