High severity8.8NVD Advisory· Published Jun 29, 2018· Updated Jun 17, 2026
CVE-2018-12994
CVE-2018-12994
Description
onefilecms.php in OneFileCMS through 2012-04-14 might allow attackers to execute arbitrary PHP code via a .php filename on the New File screen.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <=2012-04-14
Patches
Vulnerability mechanics
References
1- github.com/rocktronica/OneFileCMS/issues/7nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.