Security Advisory

CVE-2024-1527

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-12 15:19:52

Last updated 2024-08-08 18:57:16

Assigner INCIBE

State PUBLISHED

Description

Unrestricted file upload vulnerability in CMS Made Simple, affecting version 2.2.14. This vulnerability allows an authenticated user to bypass the security measures of the upload functionality and potentially create a remote execution of commands via webshell.

← Browse all CVEs View on cve.org ↗