CVE-2021-47734 | CMSimple 5.4 filename control (Exploit 50547 / EDB-50547)

Uncategorized
Yanac

A vulnerability was found in CMSimple 5.4. It has been classified as problematic. Impacted is an unknown function. Performing manipulation results in improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is identified as CVE-2021-47734. The attack is only possible with local access. Additionally, an exploit exists.VulDB Recent EntriesRead More