Critical severity9.8NVD Advisory· Published Sep 9, 2019· Updated Jun 17, 2026
CVE-2019-16192
CVE-2019-16192
Description
upload_model() in /admini/controllers/system/managemodel.php in DocCms 2016.5.17 allow remote attackers to execute arbitrary PHP code through module management files, as demonstrated by a .php file in a ZIP archive.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- DocCms/DocCmsdescription
- Range: 2016.5.17
Patches
Vulnerability mechanics
References
1- github.com/SuperSalsa20/Doccms-Execute-Code/blob/master/README.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.