Vulnerabilities > CVE-2022-33085 - Unspecified vulnerability in Ecisp Espcms-P8
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
ESPCMS P8 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the fetch_filename function at \espcms_public\espcms_templates\ESPCMS_Templates.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |