| 标题 | CMS Made Simple 2.2.22 Remote Code Execution |
|---|
| 描述 | The system does not properly verify the content of image files, allowing attackers to upload image files containing malicious scripts. The uploaded malicious image files are stored in publicly accessible directories, and these scripts can then be accessed and executed through web browsers, enabling attackers to take full control of the server environment. |
|---|
| 来源 | ⚠️ https://github.com/feixuezhi/CMSMadeSimple/wiki/CMS-Made-Simple-Version:-2.2.22-%E2%80%90-Remote-Code-Execution |
|---|
| 用户 | feioklucy (UID 83820) |
|---|
| 提交 | 2025-08-22 05時13分 (10 月前) |
|---|
| 管理 | 2025-09-09 18時10分 (19 days later) |
|---|
| 状态 | 重复 |
|---|
| VulDB条目 | 128117 [CMS Made Simple 2.2.8 File Upload SVG Document 跨网站脚本] |
|---|
| 积分 | 0 |
|---|