VYPR
High severity8.1NVD Advisory· Published Feb 21, 2018· Updated Jun 17, 2026

CVE-2018-7271

CVE-2018-7271

Description

An issue was discovered in MetInfo 6.0.0. In install/install.php in the installation process, the config/config_db.php configuration file filtering is not rigorous: one can insert malicious code in the installation process to execute arbitrary commands or obtain a web shell.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.