Submit #254122: Stupid-Simple-CMS Stupid-Simple-CMS <=1.2.4 Unauthorized file overwriteinfo

TitleStupid-Simple-CMS Stupid-Simple-CMS <=1.2.4 Unauthorized file overwrite
DescriptionThe code audit found that the file renaming interface has no authentication measures, which can lead to arbitrary file overwriting.
Source⚠️ https://github.com/g1an123/POC/blob/main/Unauthorized%20file%20overwrite.md
User
 ggbot (UID 59864)
Submission12/17/2023 09:58 (3 years ago)
Moderation12/21/2023 09:44 (4 days later)
StatusAccepted
VulDB entry248690 [codelyfe Stupid Simple CMS up to 1.2.4 /file-manager/rename.php newName path traversal]
Points15

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!