Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
eZ Publish Kernel before 5.4.14.1, 6.x before 6.13.6.2, and 7.x before 7.5.6.2 and eZ Publish Legacy before 5.4.14.1, 2017 before 2017.12.7.2, and 2019 before 2019.03.4.2 allow remote attackers to execute arbitrary code by uploading PHP code, unless the vhost configuration permits only app.php execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
eZ Publish Kernel和eZ Publish Legacy 代码问题漏洞
Vulnerability Description
eZ Systems eZ Platform是挪威eZ Systems公司的一套基于Symfony框架的内容管理系统(CMS)。eZ Publish Kernel是eZ平台的内核组件。eZ Publish Legacy是eZ平台的旧版本。 eZ Publish Kernel和eZ Publish Legacy中存在安全漏洞。远程攻击者可通过上传PHP代码利用该漏洞执行任意代码。以下产品及版本受到影响:eZ Publish Kernel 5.4.14.1之前版本,6.13.6.2之前的6.x版本,7.5.6
CVSS Information
N/A
Vulnerability Type
N/A