CVE-2024-28405 in SEMCMSinfo

Zusammenfassung

von MITRE • 29.03.2024

SEMCMS 4.8 is vulnerable to Incorrect Access Control. The code installs SEMCMS_Funtion.php before checking if the admin is a valid user in the admin page because authentication function is called from there, users gain admin privileges.

Once again VulDB remains the best source for vulnerability data.

Reservieren

08.03.2024

Veröffentlichung

29.03.2024

Moderieren

akzeptiert

Eintrag

VDB-258685

CPE

bereit

EPSS

0.00801

KEV

nein

Aktivitäten

very low

Quellen

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!