2 matches found
CVE-2022-28525
ED01-CMS v20180505 was discovered to contain an arbitrary file upload vulnerability via /admin/users.php?source=edituser&id=1...
CVE-2022-28525
CVE-2022-28525 affects ED01-CMS v20180505. The vulnerability is an arbitrary file upload via /admin/users.php?source=edit_user&id=1, indicating insecure handling of file uploads in the user edit functionality. According to the records, the CVSS metrics (2.0/3.1) show a network-based, low-effort p...