← Back

Golemcms

golemcms

Vendor: Golemcms Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-14579
1Golemcms Project
1Golemcms
Nov 21, 2024
Jul 24, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
GolemCMS through 2008-12-24, if the install/ directory remains active after an installation, allows remote attackers to execute arbitrary PHP code by inserting this code into the "Database Information" "Table prefix" for...Show more
GolemCMS through 2008-12-24, if the install/ directory remains active after an installation, allows remote attackers to execute arbitrary PHP code by inserting this code into the "Database Information" "Table prefix" form field, or obtain sensitive information via a direct request for install/install.sql.Show less