Vulnerabilities

CVE-2022-50936 - WBCE CMS 1.5.2 - Remote Code Execution (RCE) (Authenticated) (2026)

2026-01-14 0 views admin

CVE ID : CVE-2022-50936 Published : Jan. 13, 2026, 11:15 p.m. | 2 hours, 11 minutes ago Description : WBCE CMS version 1.5.2 contains an authenticated remote code execution vulnerability that allows attackers to upload malicious droplets through the admin panel. Authenticated attackers can exploit the droplet upload functionality in the admin tools to create and execute arbitrary PHP code by crafting a specially designed zip file payload. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2022-50936

Severity

HIGH

Published

Jan. 13, 2026

Affected Product: PHP

Impact: remote code execution

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2022-50936highphp

CVE-2022-50936 - WBCE CMS 1.5.2 - Remote Code Execution (RCE) (Authenticated) (2026)

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2022-50937 - Ametys CMS v4.4.1 - Cross Site Scripting (XSS) (2026)

CVE-2022-50935 - FLAME II MODEM USB - Unquoted Service Path - Guide

CVE-2022-50934 - Wing FTP Server - Authenticated RCE - Complete Guide

Update: CVE-2026-22686 - Sandbox Escape via Host Error Prototype Chain in enclave-vm

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting