| عنوان | mrcms v3.1.2 vertical privilege escalation vulnerability |
|---|
| الوصف | There is a vertical privilege escalation vulnerability in MRCMS v3.1.2 at /admin/file/delete, which allows attackers to delete any website file without logging in by constructing a request. |
|---|
| المصدر | ⚠️ https://github.com/IceFoxH/VULN/issues/1 |
|---|
| المستخدم | icefoxh (UID 82165) |
|---|
| ارسال | 28/02/2025 04:27 PM (1 سنة منذ) |
|---|
| الاعتدال | 11/03/2025 08:03 AM (11 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 299218 [MRCMS 3.1.2 org.marker.mushroom.controller.FileController /admin/file/delete.do delete path/name اجتياز الدليل] |
|---|
| النقاط | 16 |
|---|