← Voltar para CVEs

CVE-2018-17125

N/A

Descricao

CScms 4.1 allows arbitrary directory deletion via a dir=..\\ substring to plugins\sys\admin\Plugins.php.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado9/17/2018

Ultima modificacao11/21/2024

Fontenvd

Avistamentos honeypot0

Produtos afetados

chshcms:cscms

Fraquezas (CWE)

CWE-22

Referencias

https://github.com/AvaterXXX/CScms/blob/master/CScms_dirdel.md(cve@mitre.org)

https://www.patec.cn/newsshow.php?cid=24&id=125(cve@mitre.org)

https://github.com/AvaterXXX/CScms/blob/master/CScms_dirdel.md(af854a3a-2127-422b-91ae-364da2661108)

https://www.patec.cn/newsshow.php?cid=24&id=125(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.