| Название | CMS Made Simple 2.2.22 Remote Code Execution |
|---|
| Описание | The system does not properly verify the content of image files, allowing attackers to upload image files containing malicious scripts. The uploaded malicious image files are stored in publicly accessible directories, and these scripts can then be accessed and executed through web browsers, enabling attackers to take full control of the server environment. |
|---|
| Источник | ⚠️ https://github.com/feixuezhi/CMSMadeSimple/wiki/CMS-Made-Simple-Version:-2.2.22-%E2%80%90-Remote-Code-Execution |
|---|
| Пользователь | feioklucy (UID 83820) |
|---|
| Представление | 22.08.2025 05:13 (10 месяцы назад) |
|---|
| Модерация | 09.09.2025 18:10 (19 days later) |
|---|
| Статус | Дубликат |
|---|
| Запись VulDB | 128117 [CMS Made Simple 2.2.8 File Upload SVG Document межсайтовый скриптинг] |
|---|
| Баллы | 0 |
|---|