Lucene search
China National Vulnerability DatabaseCNVD-2022-78145HistoryNov 11, 2022 - 12:00 a.m.
AyaCMS arbitrary file upload vulnerability
2022-11-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
ayacms
arbitrary file upload
php
security vulnerability
attacker
execute code
EPSS
0.003
Percentile
65.1%
AyaCMS is an extremely simple and free open source PHP website builder. v3.1.2 of AyaCMS contains a security vulnerability that originates from an arbitrary file upload vulnerability found via the component /admin/fst_upload.inc.php. An attacker could use this vulnerability to execute arbitrary code via specially crafted PHP files.
Related
prion
prion
Privilege escalation
2022-11-10 20:15:00
cve
cve
CVE-2022-43074
2022-11-10 20:15:12
nvd
nvd
CVE-2022-43074
2022-11-10 20:15:12
cvelist
cvelist
CVE-2022-43074
2022-11-10 00:00:00