Vulnerability Details CVE-2021-36548
A remote code execution (RCE) vulnerability in the component /admin/index.php?id=themes&action=edit_template&filename=blog of Monstra v3.0.4 allows attackers to execute arbitrary commands via a crafted PHP file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.178
EPSS Ranking 94.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References