CVE-2022-31854

HIGH NUCLEI

Codologic Codoforum - Unrestricted File Upload

Title source: rule

Codoforum v5.1 was discovered to contain an arbitrary file upload vulnerability via the logo change option in the admin panel.

exploitdb WORKING POC

by Krish Pandey · pythonwebappsphp

nomisec WORKING POC 4 stars

by Vikaran101 · poc

Codoforum 5.1 - Arbitrary File Upload

HIGHVERIFIEDby theamanrawat

CVSS v3 7.2

EPSS 0.7989

EPSS Percentile 99.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-434

Status published

Products (1)

codologic/codoforum 5.1

Published Jul 07, 2022

Tracked Since Feb 18, 2026