CVE-2017-7570
CVE-2017-7570
PivotX 2.3.11 allows remote authenticated Advanced users to execute arbitrary PHP code by performing an upload with a safe file extension (such as .jpg) and then invoking the duplicate function to change to the .php extension.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →