MidnightBSD

Advisories for cosmocms

CVE-2018-10429 HIGH

Cosmo 1.0.0Beta6 allows attackers to execute arbitrary PHP code via the Database Prefix field on the Database Info screen of install.php.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
cosmocms cosmo 1.0.0