| Название | 四川迅睿云软件开发有限公司 迅睿CMS <=4.6.4 (2024-12-17) Remote Code Execute |
|---|
| Описание | XunRuiCMS is a PHP website content management system licensed under the MIT open-source protocol, supporting multiple core modes.
XunRuiCMS v4.6.3 and earlier versions have a frontend command execution vulnerability. Remote attackers can exploit this vulnerability to gain server access, potentially leading to server compromise. |
|---|
| Источник | ⚠️ https://github.com/pwysec/d6qRhl/blob/main/1.pdf |
|---|
| Пользователь | p1wy (UID 75818) |
|---|
| Представление | 06.02.2025 07:27 (1 Год назад) |
|---|
| Модерация | 10.02.2025 12:15 (4 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 295090 [dayrui XunRuiCMS до 4.6.4 /Control/Api/Api.php thumb эскалация привилегий] |
|---|
| Баллы | 18 |
|---|