Vulnerability — CVE-2022-30037

CVE-2022-30037

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-30037
Description:: XunRuiCMS v4.3.3 to v4.5.1 vulnerable to PHP file write and CMS PHP file inclusion, allows attackers to execute arbitrary php code, via the add function in cron.php.
Last updated date:: 03/28/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 03/28/2023
Reference url to background: https://weltolk.github.io/p/xunruicms-v4.3.3-to-v4.5.1-backstage-code-injection-vulnerabilityfile-write-and-file-inclusion/