CVE-2019-19745 - Contao Contao
Critical 8.8
Contao 4.0 through 4.8.5 allows PHP local file inclusion. A back end user with access to the form generator can upload arbitrary files and execute them on the server.
Affected software
Contao Contao
Get alerted to vulnerabilities in your software
CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.