sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized file upload interface, resulting in PHP code execution through /user/upload/upload.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-03-10T17:24:13

Updated: 2024-08-03T04:13:56.998Z

Reserved: 2022-02-07T00:00:00

Link: CVE-2022-24651

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2022-03-10T17:46:24.353

Modified: 2022-03-16T18:47:10.010

Link: CVE-2022-24651

cve-icon Redhat

No data.