Lucene search
China National Vulnerability DatabaseCNVD-2022-03207HistoryJan 08, 2022 - 12:00 a.m.
NavigateCMS Access Control Error Vulnerability
2022-01-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
navigatecms
content management system
access control
vulnerability
version 2.9
navigate_download.php
arbitrary files
security issue
EPSS
0.005
Percentile
75.6%
NavigateCMS is a content management system. An access control error vulnerability exists in version 2.9 of NavigateCMS, which stems from the fact that the ID in the product/navigate/navigate_download.php file does not properly validate the data entered. An attacker could exploit this vulnerability to read arbitrary files.
Related
prion
prion
Arbitrary file deletion
2022-01-06 12:15:00
cvelist
cvelist
CVE-2021-44351
2022-01-06 11:37:24
cve
cve
CVE-2021-44351
2022-01-06 12:15:08
nvd
nvd
CVE-2021-44351
2022-01-06 12:15:08