CVE-2018-10083 (cms_made_simple)

Posted on 2018년 4월 13일2018년 4월 16일 by admin

CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary file deletion vulnerability in the admin dashboard via directory traversal sequences in the val parameter within a cmd=del request, because code under modulesFilePicker does not restrict the val parameter.

Source: CVE-2018-10083 (cms_made_simple)

답글 남기기 응답 취소