CVE-2022-50944 - Aero CMS 0.0.1 PHP Code Injection via posts.php
CVE ID :CVE-2022-50944 Published : May 10, 2026, 1:16 p.m. | 1 hour, 48 minutes ago Description :Aero CMS 0.0.1 contains a PHP code injection vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious files through the image parameter. Attackers can
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Is Your Claude Code Safe From Base64? Inside 2026 AI Agent Attacks
- [CYBER] When prompts become shells: the tool registry is the attack surface
- [CYBER] Summer Travel Is a Mess. The Points Guy Tells Us How to Hack It
- [CYBER] CVE-2022-50970 - WordPress Plugin AAWP 3.16 Reflected XSS via tab Parameter
- [CYBER] CVE-2022-50969 - uBidAuction 2.0.1 mailingLog manage Reflected XSS
- [CYBER] CVE-2022-50968 - uBidAuction 2.0.1 auctions manage Reflected XSS