CVE-2022-29725 Information

Description

An arbitrary file upload in the image upload component of wityCMS v0.6.2 allows attackers to execute arbitrary code via a crafted PHP file.

Reference

https://github.com/Creatiwity/wityCMS/issues/161