RiteCMS 3.1.0 Authenticated Remote Code Execution

60% confidence

Description

RiteCMS v3.1.0 contains an authenticated Remote Code Execution (RCE) vulnerability via its content_function() handler. The vulnerability allows users with page-editing privileges to execute arbitrary PHP code on the server by injecting [function:...] tags into page content.

Affected Products

Vendor	Product	Versions
handylulu	ritecms	3.1.0

Related News (1 articles)

Tier C

Exploit-DB18h ago

[webapps] RiteCMS 3.1.0 - Authenticated Remote Code Execution

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

PublishedApr 6, 2026

Last enriched5h ago

Community Vote

0 upvotes0 downvotes

No votes yet

RiteCMS 3.1.0 Authenticated Remote Code Execution

Description

Affected Products

Related News (1 articles)

Community Vote

Pin to Dashboard

Verification

Vulnerability Timeline