Submeter #511724: mrcms v3.1.2 vertical privilege escalation vulnerabilityinformação

Título	mrcms v3.1.2 vertical privilege escalation vulnerability
Descrição	There is a vertical privilege escalation vulnerability in MRCMS v3.1.2 at /admin/file/delete, which allows attackers to delete any website file without logging in by constructing a request.
Fonte	⚠️ https://github.com/IceFoxH/VULN/issues/1
Utilizador	icefoxh (UID 82165)
Submissão	28/02/2025 16h27 (há 1 Ano)
Moderação	11/03/2025 08h03 (11 days later)
Estado	Aceite
Entrada VulDB	299218 [MRCMS 3.1.2 org.marker.mushroom.controller.FileController /admin/file/delete.do delete path/name Travessia de Diretório]
Pontos	16

Do you know our Splunk app?

Download it now for free!