Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:30 p.m.8 views

CVE-2022-24651

sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized file upload interface, resulting in PHP code execution through /user/upload/upload...

9.8CVSS7.9AI score0.02486EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/03/10 5:46 p.m.6 views

CVE-2022-24651

sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized file upload interface, resulting in PHP code execution through /user/upload/upload...

9.8CVSS7.8AI score0.02486EPSS
Exploits1References2
OSV
OSV
added 2022/03/10 5:46 p.m.3 views

CVE-2022-24651

sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized file upload interface, resulting in PHP code execution through /user/upload/upload...

9.8CVSS6.3AI score0.02486EPSS
Exploits1References1
CVE
CVE
added 2022/03/10 5:24 p.m.77 views

CVE-2022-24651

CVE-2022-24651 affects SentCMS 4.0.x. The vulnerability allows remote attackers to upload arbitrary files via an unauthorized upload interface at /user/upload/upload, enabling PHP code execution. Multiple sources corroborate that the issue stems from lack of validation of uploaded files. No patch...

9.8CVSS9.6AI score0.02486EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/03/10 5:24 p.m.32 views

CVE-2022-24651

sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized file upload interface, resulting in PHP code execution through /user/upload/upload...

9.9AI score0.02486EPSS
Exploits1References1
Rows per page
Query Builder