CVE-2024-25227

Name of the Vulnerable Software and Affected Versions ABO.CMS version 5.8

Description The issue allows remote attackers to execute arbitrary code, cause a denial of service (DoS), escalate privileges, and obtain sensitive information via the tb login parameter in the admin login page.

Recommendations For ABO.CMS version 5.8, consider disabling the admin login page or restricting access to it until a patch is available. Avoid using the tb login parameter in the admin login page until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.