VYPR

Sdcms

by Laike9m

CVEs (1)

  • CVE-2019-9651CriMar 11, 2019
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered in SDCMS V1.7. In the \app\admin\controller\themecontroller.php file, the check_bad() function's filtering is not strict, resulting in PHP code execution. This occurs because some dangerous PHP functions (such as "eval") are blocked but others (such as…