Vulnerabilities > Coscms

DATE CVE VULNERABILITY TITLE RISK
2014-05-23 CVE-2013-1668 OS Command Injection vulnerability in Coscms 1.3/1.41
The uploadFile function in upload/index.php in CosCMS before 1.822 allows remote administrators to execute arbitrary commands via shell metacharacters in the name of an uploaded file.
network
coscms CWE-78
8.5