VYPR
Unrated severityNVD Advisory· Published Mar 23, 2023· Updated Feb 25, 2025

CVE-2022-30037

CVE-2022-30037

Description

XunRuiCMS v4.3.3 to v4.5.1 vulnerable to PHP file write and CMS PHP file inclusion, allows attackers to execute arbitrary php code, via the add function in cron.php.

Affected products

2
  • Xunruicms/Xunruicmscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: >=4.3.3, <=4.5.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.