Remote Code Execution via public/install/#/step3 URI in CIM 0.9.3

Remote Code Execution via public/install/#/step3 URI in CIM 0.9.3

CVE-2018-20614 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

public\install\install.php in CIM 0.9.3 allows remote attackers to reload the product via the public/install/#/step3 URI.

Learn more about our Web Application Penetration Testing UK.