| Titolo | wtcms cms 1.0 RCE |
|---|
| Descrizione | A critical Remote Code Execution vulnerability has been identified in the frontend component of WTCMS 1.0. The vulnerability allows unauthenticated attackers to write arbitrary PHP code to the server by exploiting improper handling of the content parameter in the fetch function. This vulnerability can be exploited without any authentication, making it particularly severe. |
|---|
| Fonte | ⚠️ https://github.com/TiKi-r/CVE-Report/blob/main/WtcmsRCE.md |
|---|
| Utente | sT1TcH (UID 91291) |
|---|
| Sottomissione | 05/11/2025 12:20 (8 mesi fa) |
|---|
| Moderazione | 29/11/2025 14:02 (24 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 333790 [taosir WTCMS fino a 01a5f68a3dfc2fdddb44eed967bb2d4f60487665 /index.php fetch content escalationi di privilegi] |
|---|
| Punti | 17 |
|---|