Arbitrary PHP Code Execution Vulnerability in OneFileCMS

Arbitrary PHP Code Execution Vulnerability in OneFileCMS

CVE-2018-12995 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

onefilecms.php in OneFileCMS through 2012-04-14 might allow attackers to execute arbitrary PHP code via a .php filename on the Upload screen.

Learn more about our Cms Pen Testing.