| Titre | Stupid-Simple-CMS Stupid-Simple-CMS <=1.2.4 Unauthorized file read |
|---|
| Description | The code audit found that the file renaming interface has no authentication measures, which can cause arbitrary file reading. |
|---|
| La source | ⚠️ https://github.com/g1an123/POC/blob/main/Unauthorized%20file%20read.md |
|---|
| Utilisateur | ggbot (UID 59864) |
|---|
| Soumission | 17/12/2023 09:36 (il y a 3 ans) |
|---|
| Modérer | 21/12/2023 09:44 (4 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 248689 [codelyfe Stupid Simple CMS jusqu’à 1.2.4 /file-manager/rename.php oldName divulgation d'information] |
|---|
| Points | 14 |
|---|