CVE-2022-31854
Description
Codoforum v5.1 was discovered to contain an arbitrary file upload vulnerability via the logo change option in the admin panel.
NVD
Severity: HIGH
CVE ID: CVE-2022-31854
CVSS Score: 7.2
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Proof Of Concept
Nuclei Templates for CVE-2022-31854
Refrence: Project Discovery GitHub
Vikaran101
CodoForum v5.1 - File Upload Bypass to RCE (Authenticated) exploit code
Refrence: GitHub