Upstream information
Description
An issue was discovered in NoneCms V1.3. thinkphp/library/think/App.php allows remote attackers to execute arbitrary PHP code via crafted use of the filter parameter, as demonstrated by the s=index/\think\Request/input&filter=phpinfo&data=1 query string.SUSE information
Overall state of this security issue: Does not affect SUSE products
No SUSE Bugzilla entries cross referenced.SUSE Security Advisories:
- TID000019403, published Wed Mar 18 21:51:34 CET 2020
- TID7023707, published Tue Feb 12 18:55:45 CET 2019
SUSE Timeline for this CVE
CVE page created: Wed Dec 12 02:58:36 2018CVE page last modified: Tue Jul 1 12:43:19 2025