3 matches found
CVE-2024-22938
Insecure Permissions vulnerability in BossCMS v.1.3.0 allows a local attacker to execute arbitrary code and escalate privileges via the init function in admin.class.php component...
CVE-2024-22938
Insecure Permissions vulnerability in BossCMS v.1.3.0 allows a local attacker to execute arbitrary code and escalate privileges via the init function in admin.class.php component...
CVE-2024-22938
CVE-2024-22938: BossCMS v1.3.0 suffers an Insecure Permissions vulnerability enabling a local attacker to execute arbitrary code and escalate privileges via the init function in admin.class.php. Root cause: improper privilege/user-right handling in BossCMS. Impact: high (local code execution, pri...