GXCMS V1.5 has a file upload vulnerability in the background. The vulnerability is the template management page. You can edit any template content and then rename to PHP suffix file, after calling PHP file can control the server.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-05-17T00:00:00
Updated: 2024-08-03T06:40:47.475Z
Reserved: 2022-05-02T00:00:00
Link: CVE-2022-30007
Vulnrichment
Updated: 2024-08-03T06:40:47.475Z
NVD
Status : Modified
Published: 2022-05-17T16:15:09.217
Modified: 2024-04-23T20:15:07.160
Link: CVE-2022-30007
Redhat
No data.