Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:58 p.m.8 views

CVE-2022-35944

October is a self-hosted Content Management System CMS platform based on the Laravel PHP Framework. This vulnerability only affects installations that rely on the safe mode restriction, commonly used when providing public access to the admin panel. Assuming an attacker has access to the admin pan...

7.2CVSS6.9AI score0.00864EPSS
Exploits0References1
NVD
NVD
added 2022/10/13 10:15 p.m.35 views

CVE-2022-35944

October is a self-hosted Content Management System CMS platform based on the Laravel PHP Framework. This vulnerability only affects installations that rely on the safe mode restriction, commonly used when providing public access to the admin panel. Assuming an attacker has access to the admin pan...

7.2CVSS0.00864EPSS
Exploits0References1
CVE
CVE
added 2022/10/13 12:0 a.m.85 views

CVE-2022-35944

CVE-2022-35944 affects October CMS (Laravel-based). The flaw allows bypass of the Safe Mode cms.safe_mode when an attacker with admin Editor access crafts a request to inject PHP code into a CMS template. Patches exist in v2.2.34 and v3.0.66; no public exploit details are provided in the connecte...

7.2CVSS6.6AI score0.00864EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/13 12:0 a.m.6 views

CVE-2022-35944 October CMS Safe Mode bypass leads to authenticated RCE (Remote Code Execution)

October is a self-hosted Content Management System CMS platform based on the Laravel PHP Framework. This vulnerability only affects installations that rely on the safe mode restriction, commonly used when providing public access to the admin panel. Assuming an attacker has access to the admin pan...

6.2CVSS7AI score0.00864EPSS
Exploits0References1
Rows per page
Query Builder