CVE-2022-26272

Name of the Vulnerable Software and Affected Versions Ionize version 1.0.8.1

Description A remote code execution issue allows attackers to execute arbitrary code via a crafted string written to the file application/config/config.php. This is achieved by exploiting a vulnerability in the software, enabling attackers to run malicious code.

Recommendations For Ionize version 1.0.8.1, update to a version that fixes this issue to prevent remote code execution. As a temporary workaround, consider restricting write access to the application/config/config.php file until a patch is available.