CVE-2022-30037 Information

Mar 24, 2023 cve

Description

XunRuiCMS v4.3.3 to v4.5.1 vulnerable to PHP file write and CMS PHP file inclusion allows attackers to execute arbitrary php code via the add function in cron.php.

Reference

https://weltolk.github.io/p/xunruicms-v4.3.3-to-v4.5.1-backstage-code-injection-vulnerabilityfile-write-and-file-inclusion/

Share on: