Vulnerabilities > Hyphp > Hybbs2 > 2.2.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-09 | CVE-2022-24676 | Unrestricted Upload of File with Dangerous Type vulnerability in Hyphp Hybbs2 update_code in Admin.php in HYBBS2 through 2.3.2 allows arbitrary file upload via a crafted ZIP archive. | 6.5 |
| 2022-02-09 | CVE-2022-24677 | Unspecified vulnerability in Hyphp Hybbs2 Admin.php in HYBBS2 through 2.3.2 allows remote code execution because it writes plugin-related configuration information to conf.php. | 7.5 |