Lucene search
K

5 matches found

NVD
NVD
added 2026/01/13 11:15 p.m.11 views

CVE-2022-50936

WBCE CMS version 1.5.2 contains an authenticated remote code execution vulnerability that allows attackers to upload malicious droplets through the admin panel. Authenticated attackers can exploit the droplet upload functionality in the admin tools to create and execute arbitrary PHP code by...

8.8CVSS0.00785EPSS
Exploits1References5
CVE
CVE
added 2026/01/13 10:52 p.m.24 views

CVE-2022-50936

WBCE CMS 1.5.2 is affected by an authenticated remote code execution vulnerability in the admin panel’s droplet upload functionality. Authenticated attackers can craft a zip payload to upload a malicious droplet, enabling arbitrary PHP code execution on the server. This aligns with multiple sourc...

8.8CVSS8.1AI score0.00785EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2026/01/13 10:52 p.m.26 views

CVE-2022-50936 WBCE CMS 1.5.2 - Remote Code Execution (RCE) (Authenticated)

WBCE CMS version 1.5.2 contains an authenticated remote code execution vulnerability that allows attackers to upload malicious droplets through the admin panel. Authenticated attackers can exploit the droplet upload functionality in the admin tools to create and execute arbitrary PHP code by...

8.8CVSS0.00785EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/13 10:52 p.m.2 views

CVE-2022-50936 WBCE CMS 1.5.2 - Remote Code Execution (RCE) (Authenticated)

WBCE CMS version 1.5.2 contains an authenticated remote code execution vulnerability that allows attackers to upload malicious droplets through the admin panel. Authenticated attackers can exploit the droplet upload functionality in the admin tools to create and execute arbitrary PHP code by...

8.8CVSS8.1AI score0.00785EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.9 views

PT-2026-2412

Name of the Vulnerable Software and Affected Versions WBCE CMS version 1.5.2 Description The software contains an authenticated remote code execution issue. Attackers can upload malicious droplets through the admin panel. Specifically, authenticated attackers can exploit the droplet upload...

8.8CVSS6.6AI score0.00785EPSS
Exploits1References8
Rows per page
Query Builder