CVE-2026-6573 in PHPEMS信息

摘要

由 MITRE • 2026-04-19

A vulnerability was detected in PHPEMS 11.0. This affects the function temppage of the file /app/exam/controller/exams.master.php of the component Instant Exam Creation Handler. The manipulation of the argument uploadfile results in server-side request forgery. The attack can be executed remotely. The exploit is now public and may be used.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

负责

VulDB

披露

2026-04-19

管理

已接受

条目

VDB-358207

CPE

准备好

CWE

CWE-918 (已确认)

利用

下载

CVSS

6.3 (VulDB)

EPSS

0.00014

KEV

否

活动

非常低

来源

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-6573
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-6573
CVE Details	https://www.cvedetails.com/cve/CVE-2026-6573/

◂ 上一步一览下一步 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!