Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2020-17452

Description

flatCore before 1.5.7 allows upload and execution of a .php file by an admin.

POC

Reference

- https://lists.openwall.net/full-disclosure/2020/08/07/1

- https://sec-consult.com/en/blog/advisories/multiple-vulnerabilities-in-flatcore-cms/

Github

No PoCs found on GitHub currently.