제출 #848741: maccms maccms10 10 Logical Vulnerability / Auth Bypass정보

제목maccms maccms10 10 Logical Vulnerability / Auth Bypass
설명A logical vulnerability in the installation module of maccms10 allows unauthenticated remote attackers to bypass the installation lock. The step5() function in application/install/controller/Index.php fails to check for the existence of the install.lock file before execution. By sending a crafted POST request to /admin.php?s=install/index/index&step=5, an attacker can re-initialize the system, overwrite configurations, and create a new administrative account.
원천⚠️ https://github.com/trustbigcat/CVE/
사용자
 luther (UID 97566)
제출2026. 06. 05. AM 05:33 (1 월 ago)
모더레이션2026. 07. 12. PM 01:05 (1 month later)
상태수락
VulDB 항목377845 [MacCMS Pro 까지 2022.1000.3005 Installation Index.php step5 권한 상승]
포인트들20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!