CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-16352

There is a PHP code upload vulnerability in WeaselCMS 0.3.6 via index.php because code can be embedded at the end of a .png file when the image/png content type is used.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 62.0%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://github.com/alterebro/WeaselCMS/issues/8
https://github.com/alterebro/WeaselCMS/issues/8

Products affected by CVE-2018-16352

Weaselcms Project » Weaselcms » Version: 0.3.6

cpe:2.3:a:weaselcms_project:weaselcms:0.3.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-16352

Products

Pricing

Contact Us