CVE-2018-19053

Published: 2018-11-07T05:29Z

Last Modified: 2024-11-21T03:57Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

PbootCMS 1.2.2 allows remote attackers to execute arbitrary PHP code by specifying a .php filename in a "SET GLOBAL general_log_file" statement, followed by a SELECT statement containing this PHP code. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt