A vulnerability was found in Elefant CMS 1.3.12-RC. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /designer/add/layout. The manipulation leads to code injection. The attack can be launched remotely. Upgrading to version 1.3.13 is able to address this issue. It is recommended to upgrade the affected component.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| elefant/cms(Packagist) | 0 | 1.3.13 | N/A |
CVSS Metrics
