CVE-2022-29624

CVE-2022-29624

EPSS 1.2%

An arbitrary file upload vulnerability in the Add File function of TPCMS v3.2 allows attackers to execute arbitrary code via a crafted PHP file.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gitee.com/happy_source/tpcms https://gitee.com/happy_source/tpcms/issues/I533KY