Impresscms

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2022-50912 CRITICAL POC Act Now

ImpressCMS 1.4.4 has weak file upload extension filtering that can be bypassed using alternative PHP extensions (.php2, .php6, .php7, .phps, .pht). PoC available.

PHP Impresscms

NVD GitHub Exploit-DB

CVSS 3.1

9.8

EPSS

0.2%

CVE-2022-50912

EPSS 0% CVSS 9.8

CRITICAL POC Act Now

ImpressCMS 1.4.4 has weak file upload extension filtering that can be bypassed using alternative PHP extensions (.php2, .php6, .php7, .phps, .pht). PoC available.

PHP Impresscms

NVD GitHub Exploit-DB