1 results (0.001 seconds)
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1
CVE-2023-1482 – HkCms External Plugin code injection
https://notcve.org/view.php?id=CVE-2023-1482
A vulnerability, which was classified as problematic, was found in HkCms 2.2.4.230206. This affects an unknown part of the file /admin.php/appcenter/local.html?type=addon of the component External Plugin Handler. The manipulation leads to code injection. It is possible to initiate the attack remotely. • https://gitee.com/Hk_Cms/HkCms/issues/I6J7ZD https://vuldb.com/?ctiid.223365 https://vuldb.com/?id.223365 • CWE-94: Improper Control of Generation of Code ('Code Injection') •