PT-2022-27739 · Ayacms · Ayacms
Name of the Vulnerable Software and Affected Versions: AyaCMS version 3.1.2 Description: The issue concerns an arbitrary file upload vulnerability. It can be exploited via the /aya/module/admin/fst down.inc.php endpoint. Recommendations: For AyaCMS version 3.1.2, consider restricting access to th...