CVE-2026-4542 | SSCMS 4.7.0 layerImage Endpoint LayerImageController.Submit.cs filePaths path traversal

Inserito da Angelo Barbosa | Mar 21, 2026 | CVE

A vulnerability was found in SSCMS 4.7.0. It has been declared as critical. The affected element is an unknown function of the file LayerImageController.Submit.cs of the component layerImage Endpoint. Such manipulation of the argument filePaths leads to path traversal.

This vulnerability is listed as CVE-2026-4542. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-4542 | SSCMS 4.7.0 layerImage Endpoint LayerImageController.Submit.cs filePaths path traversal

Post correlati

CVE-2024-0471 | code-projects Human Resource Integrated System 1.0 dec_service_credits.php date sql injection

CVE-2025-12112 | Insert Headers and Footers Code Plugin up to 1.1.6 on WordPress cross site scripting

CVE-2024-5123 | SourceCodester Event Registration System 1.0 /registrar/ searchbar cross site scripting

CVE-2023-47065 | Adobe Experience Manager up to 6.5.18 cross site scripting (apsb23-72)