Vulnerabilities

Report: CVE-2026-5333 - DefaultFuction Content-Management-System tools.php command injection - Guide

2026-04-02 0 views admin

CVE ID :CVE-2026-5333 Published : April 2, 2026, 2:16 p.m. | 57 minutes ago Description :A security flaw has been discovered in DefaultFuction Content-Management-System 1.0. This issue affects some unknown processing of the file /admin/tools.php. The manipulation of the argument host results in command injection. The attack can be executed remotely. The exploit has been released to the public and may be used for attacks. Severity: 7.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-5333

Severity

HIGH

Published

April 2, 2026

Affected Product: php

Impact: command injection

🏷️ Tags

reportdefaultfuctioncontentmanagementsystemtoolscommandinjectionguidecve

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-5333 - DefaultFuction Content-Management-System tools.php command injection - Guide

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: Breaking: CVE-2026-34770 - Electron: Use-after-free in PowerMonitor on Windows and macOS

Report: Essential Guide: CVE-2026-34771 - Electron: Use-after-free in WebContents fullscreen, pointer-lock, and keyboard-l...

Report: CVE-2026-34768 - Electron: Unquoted executable path in app.setLoginItemSettings on Windows

Report: CVE-2026-34767 - Electron: HTTP Response Header Injection in custom protocol handlers and webRequest - Guide

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting