CVE-2024-22938 Information

Description

Insecure Permissions vulnerability in BossCMS v.1.3.0 allows a local attacker to execute arbitrary code and escalate privileges via the init function in admin.class.php component.

Reference

https://www.bosscms.net/ https://github.com/n0Sleeper/bosscmsVuln/issues/1 https://github.com/n0Sleeper/bosscmsVuln