Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-23906

Disclosure Date: February 28, 2022 (last updated February 23, 2025)
CMS Made Simple v2.2.15 was discovered to contain a Remote Command Execution (RCE) vulnerability via the upload avatar function. This vulnerability is exploited via a crafted image file.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0