Soumettre #495820: 四川迅睿云软件开发有限公司 迅睿CMS <=4.6.4 (2024-12-17) Remote Code Executeinformation

Titre四川迅睿云软件开发有限公司 迅睿CMS <=4.6.4 (2024-12-17) Remote Code Execute
DescriptionXunRuiCMS is a PHP website content management system licensed under the MIT open-source protocol, supporting multiple core modes. XunRuiCMS v4.6.3 and earlier versions have a frontend command execution vulnerability. Remote attackers can exploit this vulnerability to gain server access, potentially leading to server compromise.
La source⚠️ https://github.com/pwysec/d6qRhl/blob/main/1.pdf
Utilisateur
 p1wy (UID 75818)
Soumission06/02/2025 07:27 (il y a 1 Année)
Modérer10/02/2025 12:15 (4 days later)
StatutAccepté
Entrée VulDB295090 [dayrui XunRuiCMS jusqu’à 4.6.4 /Control/Api/Api.php thumb élévation de privilèges]
Points18

Want to know what is going to be exploited?

We predict KEV entries!