Tag

Textpattern

1 brief RSS

CVE-2021-47976 - TextPattern CMS Authenticated Remote Code Execution via Plugin Upload

TextPattern CMS 4.9.0-dev is vulnerable to remote code execution (CVE-2021-47976), allowing authenticated attackers to upload arbitrary PHP files and achieve code execution by exploiting the plugin upload functionality.

TextPattern CMS 4.9.0-dev rce csrf textpattern

2r 1t 1c 3m ago