Unrestricted file upload vulnerability in CMS Made Simple, affecting version 2.2.14. This vulnerability allows an authenticated user to bypass the security measures of the upload functionality and potentially create a remote execution of commands via webshell.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2024-03-12T15:19:52.713Z
Updated: 2024-08-08T18:57:16.775Z
Reserved: 2024-02-15T11:01:40.961Z
Link: CVE-2024-1527
Vulnrichment
Updated: 2024-08-01T18:40:21.349Z
NVD
Status : Awaiting Analysis
Published: 2024-03-12T16:15:07.990
Modified: 2024-03-12T17:46:17.273
Link: CVE-2024-1527
Redhat
No data.