CVE Details: CVE-2024-48180

Description

ClassCMS <=4.8 is vulnerable to file inclusion in the nowView method in/class/cms/cms.php, which can include a file uploaded to the/class/template directory to execute PHP code.

Published Date: 2024-10-16
Last Modified Date: 2024-10-16
Severity:
CVSS v3 Score:
CWE ID:
Attack Vector:
Attack Complexity:
Privileges Required:
User Interaction:
Scope:
Confidentiality Impact:
Integrity Impact:
Availability Impact:

Back to CVE List