PT-2023-12116 · Mblog · Mblog
Name of the Vulnerable Software and Affected Versions: mblog version 3.5.0 Description: The issue allows attackers to execute arbitrary code via a crafted theme when it gets selected. This is due to an OS Command injection vulnerability. Recommendations: For mblog version 3.5.0, update to a newer...