CVE-2019-9082: ThinkPHP Remote Code Execution Vulnerability. ThinkPHP

ThinkPHP Remote Code Execution Vulnerability. ThinkPHP contains an unspecified vulnerability that allows for remote code execution via public//?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]= followed by the command.

• CISA KEV-listed (remediation due 2022-05-03)
• EPSS 94.2% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions