CNNVD-202601-1906 Information
Jan 13, 2026
cve
CNNVD ID
CNNVD-202601-1906
Related CVE
- CNNVD Published: 2026-01-13
Description (Chinese)
WBCE CMS是WBCE CMS开源的一套基于PHP和MySQL的开源内容管理系统(CMS)。 WBCE CMS 1.5.2版本存在代码问题漏洞,该漏洞源于经过身份验证的攻击者可通过管理面板上传恶意droplet,可能导致远程代码执行。
Description (English)
WBCE CMS is a WBCE CMS Open Content Management System (CMS) based on PHP and MySQL. Version 1.5.2 of the WBCE CMS has a code problem loophole, which stems from the fact that an identified attacker can upload a malicious droplet through the management panel, which may lead to remote code execution.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
WBCE CMS
Published
2026-01-13
Last Modified
2026-02-24
References
https://github.com/WBCE/WBCE_CMS https://wbce.org/ https://wbce.org/de/downloads/ https://www.exploit-db.com/exploits/50707 https://www.vulncheck.com/advisories/wbce-cms-remote-code-execution-rce-authenticated
Patch
https://github.com/WBCE/WBCE_CMS/releases
Share on: