High severity8.8NVD Advisory· Published Jan 17, 2017· Updated Jun 17, 2026
CVE-2017-5520
CVE-2017-5520
Description
The media rename feature in GeniXCMS through 0.0.8 does not consider alternative PHP file extensions when checking uploaded files for PHP content, which enables a user to rename and execute files with the .php6, .php7 and .phtml extensions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- github.com/semplon/GeniXCMS/issues/62nvdExploitIssue TrackingPatchThird Party Advisory
- www.securityfocus.com/bid/95460nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.