Invia #254118: Stupid-Simple-CMS Stupid-Simple-CMS <=1.2.4 Unauthorized file readinformazioni

TitoloStupid-Simple-CMS Stupid-Simple-CMS <=1.2.4 Unauthorized file read
DescrizioneThe code audit found that the file renaming interface has no authentication measures, which can cause arbitrary file reading.
Fonte⚠️ https://github.com/g1an123/POC/blob/main/Unauthorized%20file%20read.md
Utente
 ggbot (UID 59864)
Sottomissione17/12/2023 09:36 (3 anni fa)
Moderazione21/12/2023 09:44 (4 days later)
StatoAccettato
Voce VulDB248689 [codelyfe Stupid Simple CMS fino a 1.2.4 /file-manager/rename.php oldName rivelazione di informazioni]
Punti14

PrecedenteVisione D'ensembleIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!