vendor:
Perch CMS
by:
Mirabbas Agalarov
7.5
CVSS
HIGH
RCE
94
CWE
Product Name: Perch CMS
Affected Version From: v3.2
Affected Version To: v3.2
Patch Exists: NO
Related CWE:
CPE: a:perch_cms:perch:3.2
Platforms Tested: Linux
2023
Perch v3.2 – Remote Code Execution (RCE)
This exploit allows remote code execution in Perch CMS v3.2. By uploading a specially crafted PHP file, an attacker can execute arbitrary commands on the target system.
Mitigation:
Update to a patched version of Perch CMS that fixes the RCE vulnerability.
