CVE-2019-9623

Summary

Feng Office 3.7.0.5 allows remote attackers to execute arbitrary code via "<!–#exec cmd=" in a .shtml file to ck_upload_handler.php.

Affected Software

VendorProductVersion RangeStatus
n/an/an/aaffected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

References