CVE-2022-28118

CVE-2022-28118

EPSS 2.7%

SiteServer CMS v7.x allows attackers to execute arbitrary code via a crafted plug-in.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/Richard-Tang/SSCMS-PluginShell/blob/main/Detail.md https://github.com/siteserver/cms https://github.com/siteserver/cms/issues/3386 http://siteserver.com