VYPR
Unrated severityNVD Advisory· Published Apr 12, 2022· Updated Aug 3, 2024

CVE-2022-24247

CVE-2022-24247

Description

RiteCMS version 3.1.0 and below suffers from an arbitrary file overwrite via path traversal vulnerability in Admin Panel. Exploiting the vulnerability allows an authenticated attacker to overwrite any file in the web root (along with any other file on the server that the PHP process user has the proper permissions to write) resulting a remote code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Handylulu/Ritecmscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=3.1.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.