Critical severity9.8NVD Advisory· Published May 16, 2018· Updated Jun 17, 2026
CVE-2018-10759
CVE-2018-10759
Description
PHP remote file inclusion vulnerability in public/patch/patch.php in Project Pier 0.8.8 and earlier allows remote attackers to execute arbitrary commands or SQL statements via the id parameter.
Affected products
2<=0.8.8+ 1 more
- (no CPE)range: <=0.8.8
- (no CPE)range: <=0.8.8
Patches
Vulnerability mechanics
References
1- seclists.org/fulldisclosure/2018/May/30nvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.