CVE

CVE-2018-18891

admin

CVE-2018-18891

MiniCMS 1.10 allows file deletion via /mc-admin/post.php?state=delete&delete= because the authentication check occurs too late.

Source: CVE-2018-18891

Exit mobile version