CVE-2022-24652

sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized file upload interface, resulting in php code execution in /admin/upload/upload.
References
Link Resource
https://blog.hanayuzu.top/articles/37dacab4.html Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:sentcms:sentcms:4.0.0:*:*:*:*:*:*:*

Information

Published : 2022-03-10 05:46

Updated : 2022-03-16 06:48


NVD link : CVE-2022-24652

Mitre link : CVE-2022-24652

Products Affected
No products.
CWE