First published: Thu Apr 21 2022(Updated: )
Victor v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the component admin/profile.php?section=admin.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Victor Cms Project Victor Cms | =1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-27478 is a remote code execution (RCE) vulnerability in Victor v1.0.
CVE-2022-27478 has a severity rating of 8.8 (high).
CVE-2022-27478 affects Victor CMS v1.0 by allowing remote attackers to execute arbitrary code via the component admin/profile.php?section=admin.
Updating Victor CMS to a version that is not affected by the vulnerability can fix CVE-2022-27478.
You can find more information about CVE-2022-27478 at the following reference: [GitHub - Victor1.0-rce.md](https://github.com/k0xx11/Vulscve/blob/master/Victor1.0-rce.md).