CVE-2022-31854

Name of the Vulnerable Software and Affected Versions Codoforum version 5.1

Description The issue is related to an arbitrary file upload vulnerability via the logo change option in the admin panel. This vulnerability can potentially lead to remote code execution.

Recommendations For Codoforum version 5.1, as a temporary workaround, consider disabling the logo change option in the admin panel until a patch is available. Restrict access to the admin panel to minimize the risk of exploitation. Avoid using the logo change feature until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.