[#12331] xxxxx
History
Updated: 2020-11-03 14:21
resolution_id: 8 => 9
state: Open => Closed
Updated: 2020-09-18 07:23
resolution_id: 5 => 8
Updated: 2020-06-29 06:45
severity_id: 1 => 3
Updated: 2020-06-29 06:05
description: Hi , it's Mazen Ahmed from Egypt i found vulnerability at CMS made simple i hope you fix it asap
Sumnary:
Editor and Designer can execute PHP code which lead to remote code excution
steps to reproduce:
1) create a user with designer and edito => xxxxx
summary: Authinticated RCE by abusing User Definded tage => xxxxx
resolution_id: => 5