PT-2022-21306 · Hongcms · Hongcms

Rixo1043

·

Published

2022-07-01

·

Updated

2022-07-13

·

CVE-2022-32411

CVSS v3.1

7.2

High

VectorAV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions HongCMS version 3.0
Description An issue in the languages config file allows attackers to getshell.
Recommendations For HongCMS version 3.0, consider restricting access to the languages config file until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2022-32411

Affected Products

Hongcms