Vulnerability Details CVE-2022-25498
CuppaCMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the saveConfigData function in /classes/ajax/Functions.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.115
EPSS Ranking 93.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References