A Local File Inclusion vulnerability has been found in Axiell Iguana CMS. Due to insufficient neutralisation of user input on the url parameter on the Proxy.type.php endpoint, external users are capable of accessing files on the server.
History

Wed, 16 Oct 2024 12:00:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: DIVD

Published: 2023-01-04T18:11:20.473Z

Updated: 2024-10-16T11:52:25.281Z

Reserved: 2022-11-08T14:17:26.668Z

Link: CVE-2022-45052

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-01-04T19:15:09.447

Modified: 2024-11-21T07:28:41.157

Link: CVE-2022-45052

cve-icon Redhat

No data.