CVE-2022-38305

Published
View on NVD ↗
CVSS v3
8.8
HIGH
CVSS v2
N/A
Affected
1
PROJECT

Description

AeroCMS v0.0.1 was discovered to contain an arbitrary file upload vulnerability via the component /admin/profile.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

MegaTKC/AeroCMS
MegaTKC/AeroCMSUNAVAILABLE
Aero is a simple and easy to use CMS (Content Management System) designed to create fast and powerful web applications!
GitHubGitHub
24