3 matches found
Code injection
An issue was discovered in pcmt superMicro-CMS version 3.11, allows authenticated attackers to execute arbitrary code via the fonttype parameter to setup.php...
CVE-2021-25857
An issue was discovered in pcmt superMicro-CMS version 3.11, allows authenticated attackers to execute arbitrary code via the fonttype parameter to setup.php...
CVE-2021-25857
The CVE-2021-25857 issue affects pcmt superMicro-CMS version 3.11. An authenticated attacker can trigger arbitrary code execution via the font_type parameter in setup.php. Root cause and impact are described across multiple sources consistently, but no explicit remediation details (patch version ...