[#12330] xxxxcsc
History
Comments
Updates
Updated: 2020-09-18 07:24
resolution_id: 5 => 9
state: Open => Closed
Updated: 2020-06-29 06:45
severity_id: 1 => 4
Updated: 2020-06-29 06:06
description: Hi , it's Mazen Ahmed from Egypt i found vulnerability at CMS made simple i hope you fix it asap
Sumnary:
Editor and Designer can execute PHP code which lead to remote code excution
steps to reproduce:
1) create a user with designer and edito => xczxcxzcxz
summary: Authinticated RCE by abusing User Definded tage => xxxxcsc
resolution_id: => 5