Orckestra C1 CMS is a .NET based Web Content Management System. A vulnerability in versions prior to 6.13 allows remote attackers to execute arbitrary code on affected installations of Orckestra C1 CMS. Authentication is required to exploit this vulnerability. The authenticated user may perform the actions unknowingly by visiting a specially crafted site. This issue is patched in C1 CMS v6.13. There are no known workarounds.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2022-09-27T15:00:15
Updated: 2024-08-03T12:00:43.606Z
Reserved: 2022-09-02T00:00:00
Link: CVE-2022-39256
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-09-27T15:15:09.373
Modified: 2024-11-21T07:17:53.527
Link: CVE-2022-39256
Redhat
No data.