| Название | mrcms v3.1.2 vertical privilege escalation vulnerability |
|---|
| Описание | There is a vertical privilege escalation vulnerability in MRCMS v3.1.2 at /admin/file/delete, which allows attackers to delete any website file without logging in by constructing a request. |
|---|
| Источник | ⚠️ https://github.com/IceFoxH/VULN/issues/1 |
|---|
| Пользователь | icefoxh (UID 82165) |
|---|
| Представление | 28.02.2025 16:27 (1 Год назад) |
|---|
| Модерация | 11.03.2025 08:03 (11 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 299218 [MRCMS 3.1.2 org.marker.mushroom.controller.FileController /admin/file/delete.do delete path/name обход каталога] |
|---|
| Баллы | 16 |
|---|