| Título | CMS Made Simple 2.2.22 Remote Code Execution |
|---|
| Descrição | The system does not properly verify the content of image files, allowing attackers to upload image files containing malicious scripts. The uploaded malicious image files are stored in publicly accessible directories, and these scripts can then be accessed and executed through web browsers, enabling attackers to take full control of the server environment. |
|---|
| Fonte | ⚠️ https://github.com/feixuezhi/CMSMadeSimple/wiki/CMS-Made-Simple-Version:-2.2.22-%E2%80%90-Remote-Code-Execution |
|---|
| Utilizador | feioklucy (UID 83820) |
|---|
| Submissão | 22/08/2025 05h13 (há 10 meses) |
|---|
| Moderação | 09/09/2025 18h10 (19 days later) |
|---|
| Estado | Duplicado |
|---|
| Entrada VulDB | 128117 [CMS Made Simple 2.2.8 File Upload SVG Document Script de Site Cruzado] |
|---|
| Pontos | 0 |
|---|