PT-2022-27755 · Aerocms · Aerocms
Name of the Vulnerable Software and Affected Versions: AeroCms version 0.0.1 Description: The issue is related to an arbitrary file upload vulnerability. This vulnerability is located at the "/admin/posts.php?source=edit post" API endpoint, which allows uploading a webshell and potentially...