Shift-Tech: Security Vulnerabilities
Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and earlier allows a remote unauthenticated attacker to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered.
CVSS Score
9.8
EPSS Score
0.006
Published
2022-12-07