How severe is CVE-2022-50806?

CVE-2022-50806 has a CVSS v3 score of 8.8 (HIGH).

CVE-2022-50806

8.8HIGH

4images 1.9 contains a remote command execution vulnerability that allows authenticated administrators to inject reverse shell code through template editing functionality. Attackers can save malicious

Publicado: 1/13/2026Actualizado: 1/14/2026

Descripción

4images 1.9 contains a remote command execution vulnerability that allows authenticated administrators to inject reverse shell code through template editing functionality. Attackers can save malicious code in the template and execute arbitrary commands by accessing a specific categories.php endpoint with a crafted cat_id parameter.

Análisis IAImpulsado por IA

Referencias

https://www.4homepages.de/
https://www.exploit-db.com/exploits/51147
https://www.vulncheck.com/advisories/images-remote-command-execution-rce