VYPR

I Doit

by Jqhph

CVEs (1)

  • CVE-2018-20159Dec 15, 2018
    risk 0.04cvss epss 0.10

    i-doit open 1.11.2 allows Remote Code Execution because ZIP archives are mishandled. It has an upload feature that allows an authenticated user with the administrator role to upload arbitrary files to the main website directory. Exploitation involves uploading a ".php" file…