📦 Sitos Six

CVE-2019-15746 is a critical remote code execution vulnerability in SITOS six Build v6.2.1 that allows attackers to inject arbitrary PHP commands. This enables server compromise and execution of syste...

CVE-2019-15748 allows unauthenticated attackers to upload malicious SCORM packages containing PHP files to SITOS six Build v6.2.1, leading to remote code execution. This affects any organization using...

This vulnerability allows unauthenticated remote attackers to upload malicious files with executable extensions to SITOS six Build v6.2.1 web applications. Attackers can execute arbitrary PHP code and...