Octobercms: >> October >> 1.0.412 Security Vulnerabilities
October CMS build 412 is vulnerable to file path modification in asset move functionality resulting in creating creating malicious files on the server.
CVSS Score
9.8
EPSS Score
0.004
Published
2017-11-17
October CMS build 412 is vulnerable to PHP code execution in the file upload functionality resulting in site compromise and possibly other applications on the server.
CVSS Score
7.2
EPSS Score
0.762
Published
2017-10-05
Page 4