CVE-2022-25099

2022-02-2415:15:30

Google

osv.dev

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.5%

JSON

A vulnerability in the component /languages/index.php of WBCE CMS v1.5.2 allows attackers to execute arbitrary code via a crafted PHP file.

CPENameOperatorVersion
wbce_cmseq1.3.0
wbce_cmseq1.3.2
wbce_cmseq1.1.8
wbce_cmseq1.0.0-beta.3
wbce_cmseq1.1.11
wbce_cmseq1.0.0
wbce_cmseq1.1.1
wbce_cmseq1.1.10
wbce_cmseq1.4.5
wbce_cmseq1.4.4

Name	Operator	Version
wbce_cms	eq	1.3.0
wbce_cms	eq	1.3.2
wbce_cms	eq	1.1.8
wbce_cms	eq	1.0.0-beta.3
wbce_cms	eq	1.1.11
wbce_cms	eq	1.0.0
wbce_cms	eq	1.1.1
wbce_cms	eq	1.1.10
wbce_cms	eq	1.4.5
wbce_cms	eq	1.4.4