| Titel | 四川迅睿云软件开发有限公司 迅睿CMS <=4.6.4 (2024-12-17) Remote Code Execute |
|---|
| Beschreibung | XunRuiCMS is a PHP website content management system licensed under the MIT open-source protocol, supporting multiple core modes.
XunRuiCMS v4.6.3 and earlier versions have a frontend command execution vulnerability. Remote attackers can exploit this vulnerability to gain server access, potentially leading to server compromise. |
|---|
| Quelle | ⚠️ https://github.com/pwysec/d6qRhl/blob/main/1.pdf |
|---|
| Benutzer | p1wy (UID 75818) |
|---|
| Einreichung | 06.02.2025 07:27 (vor 1 Jahr) |
|---|
| Moderieren | 10.02.2025 12:15 (4 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 295090 [dayrui XunRuiCMS bis 4.6.4 /Control/Api/Api.php thumb erweiterte Rechte] |
|---|
| Punkte | 18 |
|---|