CVE-2021-25857

Description

An issue was discovered in pcmt superMicro-CMS version 3.11, allows authenticated attackers to execute arbitrary code via the font_type parameter to setup.php.

Related CPE's

a supermicro-cms_project supermicro-cms 3.11 *******

References

https://github.com/pcmt/superMicro-CMS/issues/2

ExploitIssue Tracking

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io