CVE-2022-25495
CVE-2022-25495 affects CuppaCMS v1.0, where the vulnerable component is /jquery_file_upload/server/php/index.php. An attacker can upload arbitrary files via a crafted PHP file and achieve remote code execution. The vulnerability is described across multiple feeds (NVD entry, CNVD/CNNVD summaries,...