Vulnerabilities > CVE-2017-14763 - Unspecified vulnerability in Genixcms 1.1.4

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
genixcms
NVD
Published: 2017-09-27
Updated: 2019-10-03

Summary

In the Install Themes page in GeniXCMS 1.1.4, remote authenticated users can execute arbitrary PHP code via a .php file in a ZIP archive of a theme.

Vulnerable Configurations

Part Description Count
Application
Genixcms
1

References