Lucene search

CVE-2022-47083

🗓️ 10 Jan 2023 17:11:15Reported by mitreType

cve🔗 web.nvd.nist.gov👁 49 Views🌐 WEB

Spitfire CMS 1.0.475 PHP Object Injectio

Reporter	Title	Published	Views	Family All 4
Prion	Design/Logic Flaw	10 Jan 202317:15	–	prion
NVD	CVE-2022-47083	10 Jan 202317:15	–	nvd
Cvelist	CVE-2022-47083	10 Jan 202300:00	–	cvelist
Zero Science Lab	Spitfire CMS 1.0.475 (cms_backup_values) PHP Object Injection	9 Dec 202200:00	–	zeroscience

Nvd

Node

spitfire_project spitfireMatch1.0475

Source	Link
zeroscience	www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5720.php

Parameter	Position	Path	Description	CWE
action	request body	/cms/edit/tpl_backup_action.php	PHP Object Injection vulnerability allows attackers to manipulate serialized input to execute arbitrary code.	CWE-502
value	request body	/cms/edit/tpl_backup_action.php	PHP Object Injection vulnerability allows attackers to manipulate serialized input to execute arbitrary code.	CWE-502

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jan 2023 17:15Current

8.9High risk

Vulners AI Score8.9

CVSS38.8

EPSS0.00114

CWE-502