Vulnerabilities > CVE-2022-48094 - Files or Directories Accessible to External Parties vulnerability in Lmxcms 1.41

047910
CVSS 4.9 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
lmxcms
CWE-552
NVD
Published: 2023-02-01
Updated: 2023-02-08

Summary

lmxcms v1.41 was discovered to contain an arbitrary file read vulnerability via TemplateAction.class.php.

Vulnerable Configurations

Part Description Count
Application
Lmxcms
1

Common Weakness Enumeration (CWE)

References