CVE-2022-48323P1CRITICALCVSS 9.8ExploitedPoCv1.0.1.433152023-02-13
CVE-2022-48323 [CRITICAL] CWE-22 CVE-2022-48323: Sunlogin Sunflower Simplified (aka Sunflower Simple and Personal) 1.0.1.43315 is vulnerable to a pat
Sunlogin Sunflower Simplified (aka Sunflower Simple and Personal) 1.0.1.43315 is vulnerable to a path traversal issue. A remote and unauthenticated attacker can execute arbitrary programs on the victim host by sending a crafted HTTP request, as demonstrated by /check?cmd=ping../ followed by the pathname of the powershell.exe program.
nvd