TROYANOSYVIRUS
Volver a CVEs

CVE-2018-17125

N/A

Descripcion

CScms 4.1 allows arbitrary directory deletion via a dir=..\\ substring to plugins\sys\admin\Plugins.php.

Detalles CVE

Puntuacion CVSS v3.1N/A
Publicado9/17/2018
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0

Productos afectados

chshcms:cscms

Debilidades (CWE)

CWE-22

Referencias

https://github.com/AvaterXXX/CScms/blob/master/CScms_dirdel.md(cve@mitre.org)
https://www.patec.cn/newsshow.php?cid=24&id=125(cve@mitre.org)
https://github.com/AvaterXXX/CScms/blob/master/CScms_dirdel.md(af854a3a-2127-422b-91ae-364da2661108)
https://www.patec.cn/newsshow.php?cid=24&id=125(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.