CVE-2022-25486

CVE-2022-25486

EPSS 10.0%

CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertConfigField.php.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/CuppaCMS/CuppaCMS/issues/15 https://github.com/CuppaCMS/CuppaCMS/issues/25 https://github.com/hansmach1ne/MyExploits/tree/main/Multiple_LFIs_in_CuppaCMS_alerts