Vulnerability Details CVE-2022-37190
CuppaCMS 1.0 is vulnerable to Remote Code Execution (RCE). An authenticated user can control both parameters (action and function) from "/api/index.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.869
EPSS Ranking 99.4%
CVSS Severity
CVSS v3 Score 8.8
References