HIGH
Evo
CVE published 2026-05-10
CVE-2021-47939
CVE-2021-47939 is an authenticated remote code execution vulnerability associated with Evolution CMS 3.1.6. The supplied CVE description says an attacker with module creation permissions can inject PHP into module parameters and trigger arbitrary system commands through requests to /manager/index.php. Because exploitation requires authentication and elevated permissions, the main risk is from compromised [truncated]