| Название | Stupid-Simple-CMS Stupid-Simple-CMS <=1.2.4 Unauthorized file deletion |
|---|
| Описание | The code audit found that there is no authentication measure for the file deletion interface, which can cause arbitrary file deletion. |
|---|
| Источник | ⚠️ https://github.com/g1an123/POC/blob/main/Unauthorized%20file%20deletion.md |
|---|
| Пользователь | ggbot (UID 59864) |
|---|
| Представление | 17.12.2023 09:29 (3 лет назад) |
|---|
| Модерация | 17.12.2023 09:35 (7 minutes later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 248269 [codelyfe Stupid Simple CMS до 1.2.4 Deletion Interface /file-manager/delete.php Файл слабая аутентификация] |
|---|
| Баллы | 15 |
|---|