Vulnerability CVE-2022-4606
Published: 2022-12-18

Description:
PHP Remote File Inclusion in GitHub repository flatpressblog/flatpress prior to 1.3.

Type:

CWE-98

 (Improper Control of Filename for Include/Require Statement in PHP Program ('PHP File Inclusion'))

 References:
https://huntr.dev/bounties/3dab0466-c35d-4163-b3c7-a8666e2f7d95
https://github.com/flatpressblog/flatpress/commit/c30d52b28483e1e512d0d81758d4c149f02b4068
Copyright 2024, cxsecurity.com

 

Back to Top