Security Advisory

CVE-2022-42458

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-07 00:00:00

Last updated 2025-04-23 14:22:12

Assigner jpcert

State PUBLISHED

Description

Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and earlier allows a remote unauthenticated attacker to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered.

← Browse all CVEs View on cve.org ↗