CNNVD-202601-2881 Information
CNNVD ID
CNNVD-202601-2881
Related CVE
- CNNVD Published: 2026-01-16
Description (Chinese)
websitebaker是WebsiteBaker组织的一个基于PHP的内容管理系统。它的特点包括基于模板的前台界面,分页支持, 多用户管理等。 websitebaker 2.13.0版本存在安全漏洞,该漏洞源于经过身份验证的用户可利用语言安装端点,可能导致远程代码执行。
Description (English)
Websitebaker is a PHP-based content management system for WebsiteBaker. Its features include template-based front-office interfaces, page break support, multi-user management, etc. There is a security loophole in version 2.1.0 of websitebaker, which stems from the installation of endpoints in the language that can be used by an identified user, which may result in remote code execution.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
WebsiteBaker
Published
2026-01-16
Last Modified
2026-02-24
References
https://websitebaker.org/ https://www.exploit-db.com/exploits/50310 https://www.vulncheck.com/advisories/websitebaker-remote-code-execution-rce-authenticated
Patch
https://addon.websitebaker.org/en/browse-add-ons/?type=5&cid=997
Share on: