Local File Inclusion Vulnerability in Axiell Iguana CMS Allows Unauthorized File Access

Local File Inclusion Vulnerability in Axiell Iguana CMS Allows Unauthorized File Access

CVE-2022-45052 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

A Local File Inclusion vulnerability has been found in Axiell Iguana CMS. Due to insufficient neutralisation of user input on the url parameter on the Proxy.type.php endpoint, external users are capable of accessing files on the server.

Learn more about our Cis Benchmark Audit For Server Software.