CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-25401

The copy function of the file manager in Cuppa CMS v1.0 allows any file to be copied to the current directory, granting attackers read access to arbitrary files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.067

EPSS Ranking 90.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://github.com/dota-st/Vulnerability/blob/master/CuppaCMS/CuppaCMS_second.md
https://github.com/dota-st/Vulnerability/blob/master/CuppaCMS/CuppaCMS_second.md

Products affected by CVE-2022-25401

Cuppacms » Cuppacms » Version: 1.0

cpe:2.3:a:cuppacms:cuppacms:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-25401

Products

Pricing

Contact Us