Vulnerabilities

CVE-2018-9850

by Fred · 07/04/2018

In Gxlcms QY v1.0.0713, LibLibActionAdminDataAction.class.php allows remote attackers to delete any file via directory traversal sequences in the id parameter of an Admin-Data-del request.

Date published : 2018-04-07

http://www.atksec.com/cve/GxlcmsQY-v1.0.0713-filedelete/index.html

Similar

Tags: Cybersecurity Alert