How severe is CVE-2022-50806?

CVE-2022-50806 has a CVSS v3 score of 8.8 (HIGH).

CVE-2022-50806

8.8HIGH

4images 1.9 contains a remote command execution vulnerability that allows authenticated administrators to inject reverse shell code through template editing functionality. Attackers can save malicious

Published: 1/13/2026Updated: 1/14/2026

Description

4images 1.9 contains a remote command execution vulnerability that allows authenticated administrators to inject reverse shell code through template editing functionality. Attackers can save malicious code in the template and execute arbitrary commands by accessing a specific categories.php endpoint with a crafted cat_id parameter.

AI AnalysisPowered by AI

References

https://www.4homepages.de/
https://www.exploit-db.com/exploits/51147
https://www.vulncheck.com/advisories/images-remote-command-execution-rce