CVE-2026-7044 | GreenCMS up to 2.3 index.php?m=admin&c=custom&a=themeadd unrestricted upload

Inserito da Angelo Barbosa | Apr 25, 2026 | CVE

A vulnerability was found in GreenCMS up to 2.3 and classified as critical. Affected is the function themeadd of the file /index.php?m=admin&c=custom&a=themeadd. The manipulation results in unrestricted upload. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is reported as CVE-2026-7044. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2026-7044 | GreenCMS up to 2.3 index.php?m=admin&c=custom&a=themeadd unrestricted upload

Post correlati

CVE-2024-42501 | HPE Aruba OS up to 10.6.0.2 path traversal

CVE-2024-27376 | Samsung Exynos 1330 slsi_nan_subscribe_get_nl_params heap-based overflow

CVE-2024-47180 | badges shields prior server-2024-09-25 injection

CVE-2025-6529 | 70mai M300 up to 20250611 Telnet Service default credentials