CVE-2022-23906

CMS Made Simple v2.2.15 was discovered to contain a Remote Command Execution (RCE) vulnerability via the upload avatar function. This vulnerability is exploited via a crafted image file.
References
Link Resource
http://dev.cmsmadesimple.org/bug/view/12502 Exploit Issue Tracking
Configurations

Configuration 1

cpe:2.3:a:cmsmadesimple:cms_made_simple:2.2.15:*:*:*:*:*:*:*

Information

Published : 2022-02-28 11:15

Updated : 2022-03-08 07:11


NVD link : CVE-2022-23906

Mitre link : CVE-2022-23906

Products Affected
No products.
CWE