VYPR
Critical severity9.8OSV Advisory· Published Sep 2, 2018· Updated Jun 17, 2026

CVE-2018-16352

CVE-2018-16352

Description

There is a PHP code upload vulnerability in WeaselCMS 0.3.6 via index.php because code can be embedded at the end of a .png file when the image/png content type is used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Alterebro/WeaselcmsOSV2 versions
    v0.1, v0.2, v0.3.0, …+ 1 more
    • (no CPE)range: v0.1, v0.2, v0.3.0, …
    • (no CPE)range: =0.3.6

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.