Lucene search
HistoryMay 01, 2024 - 6:15 p.m.
CVE-2024-33442
flusity-cms
remote code execution
add_post.php
vulnerability
cve-2024-33442
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
AI Score
7.5
Confidence
High
EPSS
0
Percentile
9.0%
An issue in flusity-CMS v.2.33 allows a remote attacker to execute arbitrary code via the add_post.php component.
Related
cvelist
cvelist
CVE-2024-33442
2024-05-01 00:00:00
vulnrichment
vulnrichment
CVE-2024-33442
2024-05-01 00:00:00
cve
cve
CVE-2024-33442
2024-05-01 18:15:24
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
AI Score
7.5
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-33442