CVE-2018-18387
HIGH
8.8
CVSS Severity Score
Vulnerability Description
playSMS through 1.4.2 allows Privilege Escalation through Daemon abuse.
Affected Platforms (CPE)
📦
Playsms Project
Back to CVE Browser
Related Vulnerabilities
CVE-2017-91019.8
import.php (aka the Phonebook import feature) in PlaySMS 1.4 allows remote code execution via vectors involving the User-Agent HTT...
CVE-2021-403739.8
playSMS before 1.4.5 allows Arbitrary Code Execution by entering PHP code at the #tabs-information-page of core_main_config, and t...
CVE-2020-86449.8
PlaySMS before 1.4.3 does not sanitize inputs from a malicious string.
CVE-2017-90808.8
PlaySMS 1.4 allows remote code execution because PHP code in the name of an uploaded .php file is executed. sendfromfile.php has a...