CVE-2022-30037
XunRuiCMS versions 4.3.3–4.5.1 are affected by CVE-2022-30037 due to a PHP file write and PHP file inclusion vulnerability in cron.php (add function), enabling arbitrary PHP code execution. The root cause is the ability to write files and include them via cron.php, leading to high-impact compromi...