CNNVD-202602-233 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-233
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
Victor CMS是尼日利亚Victor Alagwu个人开发者的一套开源的内容管理系统。 Victor CMS 1.0版本存在代码问题漏洞,该漏洞源于user_image参数存在经过身份验证的文件上传漏洞,可能导致执行系统命令。
Description (English)
Victor CMS is an open-source content management system for Victor Aragwu personal developers in Nigeria. Victor CMS Version 1.0 has a code problem loophole, which stems from an identity-verified document upload gap in the user image parameter, which may lead to the implementation of the system command.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
个人开发者
Published
2026-02-03
Last Modified
2026-02-24
References
https://github.com/VictorAlagwu/CMSsite https://www.exploit-db.com/exploits/48490 https://www.vulncheck.com/advisories/victor-cms-authenticated-arbitrary-file-upload
Share on: