Vulnerabilities > Hyphp > Hybbs2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-09 | CVE-2022-24676 | Unrestricted Upload of File with Dangerous Type vulnerability in Hyphp Hybbs2 update_code in Admin.php in HYBBS2 through 2.3.2 allows arbitrary file upload via a crafted ZIP archive. | 8.8 |
| 2022-02-09 | CVE-2022-24677 | Unspecified vulnerability in Hyphp Hybbs2 Admin.php in HYBBS2 through 2.3.2 allows remote code execution because it writes plugin-related configuration information to conf.php. | 9.8 |