Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
An arbitrary file upload vulnerability in the /languages/install.php component of WBCE CMS v1.6.1 allows attackers to execute arbitrary code via a crafted PHP file.
- https://gitee.com/CTF-hacker/pwn/issues/I7LH2N
- https://github.com/capture0x/WBCE_CMS
- https://packetstormsecurity.com/files/176018/WBCE-CMS-1.6.1-Shell-Upload.html
No PoCs found on GitHub currently.