CVE-2018-20062 - ThinkPHP "noneCms" Remote Code Execution Vulnerability
Project:ThinkPHP
Product:noneCms
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
ThinkPHP "noneCms" Remote Code Execution Vulnerability
Description
ThinkPHP "noneCms" contains an unspecified vulnerability that allows for remote code execution through crafted use of the filter parameter.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-20062
Related News Articles
Hackers exploit 2018 ThinkPHP flaws to install ‘Dama’ web shellsJune 7, 2024