October CMS 漏洞列表

共找到 2 个与 October CMS 相关的漏洞

📅 加载漏洞趋势中...

CVE-2022-21705: October CMS - Remote Code Execution POC

日期: 2025-08-01 | 影响软件: October CMS

October CMS is susceptible to remote code execution. In affected versions, user input is not properly sanitized before rendering. An authenticated user with the permissions to create, modify, and delete website pages can bypass cms.safe_mode and cms.enableSafeMode in order to execute arbitrary code. This affects admin panels that rely on safe mode and restricted permissions.
CVE-2022-21705: October CMS - Remote Code Execution POC

日期: 2025-08-01 | 影响软件: October CMS

October CMS is susceptible to remote code execution. In affected versions, user input is not properly sanitized before rendering. An authenticated user with the permissions to create, modify, and delete website pages can bypass cms.safe_mode and cms.enableSafeMode in order to execute arbitrary code. This affects admin panels that rely on safe mode and restricted permissions.