CVE-2019-16192
CVE-2019-16192
upload_model() in /admini/controllers/system/managemodel.php in DocCms 2016.5.17 allow remote attackers to execute arbitrary PHP code through module management files, as demonstrated by a .php file in a ZIP archive.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →