CNNVD-202602-234 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-234
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
CraftCMS 3 vCard Plugin是Nathaniel Hammond个人开发者的一个vCard生成器插件。 CraftCMS 3 vCard Plugin 1.0.0版本存在代码问题漏洞,该漏洞源于存在反序列化漏洞,可能导致执行任意PHP代码。
Description (English)
CraftCMS 3 vCard Plugin is a vCard generator plugin for Nathaniel Hammond’s personal developer. CraftCMS 3 vCard Plugin 1.0.0 had a code gap, which stemmed from a back-sequencing gap that could lead to the implementation of any PHP code.
Hazard Level
Low
Vulnerability Type
代码问题
Affected Vendor
个人开发者
Published
2026-02-03
Last Modified
2026-02-24
References
https://craftcms.com/ https://gitlab.com/wguest/craftcms-vcard-exploit https://plugins.craftcms.com/vcard https://www.exploit-db.com/exploits/48492 https://www.vulncheck.com/advisories/craftcms-vcard-plugin-remote-code-execution
Share on: