CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-04-21 09:56:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
CVEs-PoC/2017/CVE-2017-11178.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

785 B
Raw Permalink Blame History

CVE-2017-11178

Description

In FineCMS through 2017-07-11, application/core/controller/style.php allows remote attackers to write to arbitrary files via the contents and filename parameters in a route=style action. For example, this can be used to overwrite a .php file because the file extension is not checked.

POC

Reference

No PoCs from references.

Github

Reference in New Issue View Git Blame Copy Permalink