Vulnerabilities

Report: Breaking: CVE-2026-7043 - GreenCMS index.php pluginAddLocal unrestricted upload

2026-04-27 0 views admin

CVE ID :CVE-2026-7043 Published : April 26, 2026, 10:17 p.m. | 1 hour, 15 minutes ago Description :A vulnerability has been found in GreenCMS up to 2.3. This impacts the function pluginAddLocal of the file /index.php?m=admin&c=custom&a=pluginadd. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer. Severity: 6.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-7043

Severity

MEDIUM

Published

April 26, 2026

Affected Product: php

🏷️ Tags

reportbreakinggreencmsindexpluginaddlocalunrestricteduploadpublishedcvecve-2026-7043

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Breaking: CVE-2026-7043 - GreenCMS index.php pluginAddLocal unrestricted upload

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-33277 - LogonTracer OS Command Injection Vulnerability - 2025 Update

Report: CVE-2026-7067 - D-Link DIR-822 udhcpd DHCP Service dhcpd.c system command injection

Report: CVE-2026-42363 - GeoVision GV-IP Device Utility Device Authentication insufficient encryption vul

Report: Update: CVE-2026-33566 - LogonTracer Cipher Injection Vulnerability

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting