3 matches found
JTBC(PHP) Arbitrary Code Execution Vulnerability
JTBC PHP is an open source CMS Content Management System. An arbitrary code execution vulnerability exists in JTBCPHP version 3.0.1.6, which can be exploited by a remote attacker to execute arbitrary PHP code on an affected system by sending a specially crafted HTTP request...
JTBC(PHP) Arbitrary File Read Vulnerability
JTBC PHP is an open source CMS Content Management System. JTBC PHP 3.0.1.6 version of an arbitrary file reading vulnerability , a remote attacker can use /console//console/file/manage.php?type=list&path=c:/URL to exploit the vulnerability in the system to read arbitrary files...
CVE-2018-17838
An issue was discovered in JTBCPHP 3.0.1.6. Arbitrary file read operations are possible via a /console//console/file/manage.php?type=list&path=c:/ substring...