First published: Thu Aug 24 2023(Updated: )
PbootCMS below v3.2.0 was discovered to contain a command injection vulnerability via create_function.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Pbootcms Pbootcms | <3.2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of the command injection vulnerability in PbootCMS is CVE-2023-39834.
The severity of CVE-2023-39834 is critical with a CVSS score of 9.8.
The affected software version of CVE-2023-39834 is PbootCMS below v3.2.0.
The command injection vulnerability in PbootCMS can be exploited via create_function.
Yes, upgrading PbootCMS to version 3.2.0 or above will fix the command injection vulnerability.