Unrestricted File Upload Vulnerability in BigTree CMS through 4.2.18

Unrestricted File Upload Vulnerability in BigTree CMS through 4.2.18

CVE-2017-9364 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Unrestricted File Upload exists in BigTree CMS through 4.2.18: if an attacker uploads an 'xxx.pht' or 'xxx.phtml' file, they could bypass a safety check and execute any code.

Learn more about our Cms Pen Testing.