CVE-2024-0728

Name of the Vulnerable Software and Affected Versions ForU CMS versions up to 2020-06-23

Description A problematic issue was found in ForU CMS, affecting an unknown functionality of the file channel.php. The manipulation of the c cmodel argument leads to file inclusion. This issue can be exploited remotely.

Recommendations For ForU CMS versions up to 2020-06-23, consider restricting access to the channel.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the c cmodel argument in the affected file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.