Security Advisory

CVE-2024-58283

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-10 21:14:54

Last updated 2026-04-07 14:08:36

Assigner VulnCheck

State PUBLISHED

Description

WBCE CMS version 1.6.2 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files through the Elfinder file manager. Attackers can exploit the file upload functionality in the elfinder connector to upload a web shell and execute arbitrary system commands through a user-controlled parameter.

← Browse all CVEs View on cve.org ↗