edit-icon download-icon

[Vulnerability notice] Authkey leak vulnerability in phpCMS

Last Updated: Nov 17, 2017

Description

phpCMS is an open-source content management system, released under the GNU Public License, that excels in low system requirements, high performance, and flexibility.

phpCMS has poorly written code logic which may cause the website authkey to be leaked. The authkey has high permissions, and hackers may use authkey to perform highly-privileged operations on the website.

Fix

Update phpCMS to the latest version from the official website.

Thank you! We've received your feedback.