CVE-2022-28118
SiteServer CMS v7.x allows attackers to execute arbitrary code via a crafted plug-in.
CVSS
9.8
Crítico
EPSS
2.6%
p84
KEV
—
Exploit Today
25
0-100
Publicado: 3 may 2022 · Última mod.: 9 jul 2026
2.6%EPSS · 30 días2.8%
2026-06-302026-07-16
SiteServer CMS v7.x allows attackers to execute arbitrary code via a crafted plug-in.
- github.comhttps://github.com/Richard-Tang/SSCMS-PluginShell/blob/main/Detail.md
- github.comhttps://github.com/siteserver/cms
- github.comhttps://github.com/siteserver/cms/issues/3386
- github.comhttps://github.com/Richard-Tang/SSCMS-PluginShell/blob/main/Detail.md
- github.comhttps://github.com/siteserver/cms
- github.comhttps://github.com/siteserver/cms/issues/3386
Sin CVEs relacionados por CWE o producto.