Critical severity9.8NVD Advisory· Published Jun 27, 2018· Updated Jun 17, 2026
CVE-2018-12914
CVE-2018-12914
Description
A remote code execution issue was discovered in PublicCMS V4.0.20180210. An attacker can upload a ZIP archive that contains a .jsp file with a directory traversal pathname. After an unzip operation, the attacker can execute arbitrary code by visiting a .jsp URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/sanluan/PublicCMS/issues/13nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.