Arbitrary File Upload Vulnerability in BossCMS 1.0

Arbitrary File Upload Vulnerability in BossCMS 1.0

CVE-2022-28606 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An arbitrary file upload vulnerability exists in Wenzhou Huoyin Information Technology Co., Ltd. BossCMS 1.0, which can be exploited by an attacker to gain control of the server.

Learn more about our Cis Benchmark Audit For Server Software.