Zikula : Security vulnerabilities, CVEs Bypass

CVE-2016-9835

Directory traversal vulnerability in file "jcss.php" in Zikula 1.3.x before 1.3.11 and 1.4.x before 1.4.4 on Windows allows a remote attacker to launch a PHP object injection by uploading a serialized file.

Max CVSS

9.8

EPSS Score

0.39%

Published

2016-12-05

Updated

2016-12-27

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Zikula : Security Vulnerabilities, CVEs, (Bypass)

CVE-2016-9835