CVE-2024-22938

Published January 30th, 2024

View on NVD ↗

CVSS v3

7.8

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Insecure Permissions vulnerability in BossCMS v.1.3.0 allows a local attacker to execute arbitrary code and escalate privileges via the init function in admin.class.php component.

n0Sleeper/bosscmsVuln

Bosscms的漏洞提交issue

GitHub