Lucene search
China National Vulnerability DatabaseCNVD-2022-08038HistoryJan 17, 2022 - 12:00 a.m.
October CMS code injection vulnerability
2022-01-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
0.001 Low
EPSS
Percentile
49.8%
October CMS is an open source content management system (CMS) based on PHP and the Laravel web application framework. October CMS is vulnerable to a code injection vulnerability that originates when a web system or product fails to properly filter special elements in code segments constructed from external input data. An attacker could use this vulnerability to inject and execute malicious code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| october cms october cms | eq | 1.0.472 | |
| october cms october cms | eq | 1.1.5 |
Related
cvelist
cvelist
CVE-2021-32650 Arbitrary code execution in october/system
2022-01-14 15:05:10
cve
cve
CVE-2021-32650
2022-01-14 15:15:07
veracode
veracode
Remote Code Execution (RCE)
2022-01-17 07:54:15
prion
prion
Design/Logic Flaw
2022-01-14 15:15:00
github
github
october/system arbitrary code execution
2022-01-14 21:08:26
osv
osv
CVE-2021-32650
2022-01-14 15:15:07
october/system arbitrary code execution
2022-01-14 21:08:26
nvd
nvd
CVE-2021-32650
2022-01-14 15:15:07