| Titre | MiniCMS https://github.com/bg5sbk/MiniCMS V1.8 unauthorized vulnerability |
|---|
| Description | •The core threat of the unauthorized recovery of Recycle Bin files lies in compromising data deletion and permission isolation mechanisms. Attackers can bypass authentication to restore deleted confidential documents, private data, or even malicious files from the Recycle Bin. This not only leads to sensitive information leaks, corporate compliance risks, and financial losses, but also allows previously removed malware to re-emerge and spread, destabilizing the system. The vulnerability affects multiple operating systems including Windows and Linux, as well as cloud and NAS storage devices. Some attacks can operate silently without user awareness, potentially triggering cascading risks such as password cracking and system breaches, severely weakening the overall data security defenses.
DESCRIPTION
•The /minicms/mc-admin/post.php file in MiniCMS v1.8 (compatible with PHP 5.2.17) contains an unauthorized trash file restoration vulnerability. This flaw arises from the system's lack of strict permission verification for trash file restoration operations, allowing attackers to bypass authentication. The attack mechanism involves initiating a file restoration request in the backend, capturing the data packet, deleting the mc_token Cookie field from the request, and resending the packet. Without authentication, the system can restore files from the trash to the draft folder. |
|---|
| La source | ⚠️ https://github.com/ueh1013/VULN/issues/12 |
|---|
| Utilisateur | Blackooo (UID 93743) |
|---|
| Soumission | 27/12/2025 11:38 (il y a 6 mois) |
|---|
| Modérer | 04/01/2026 11:27 (8 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 339490 [bg5sbk MiniCMS jusqu’à 1.8 Trash File Restore post.php authentification faible] |
|---|
| Points | 20 |
|---|