Lucene search
China National Vulnerability DatabaseCNVD-2022-54308HistoryJun 28, 2022 - 12:00 a.m.
PortlandLabs Concrete CMS Arbitrary File Deletion Vulnerability
2022-06-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.002 Low
EPSS
Percentile
52.0%
PortlandLabs Concrete CMS is a team-oriented open source content management system from PortlandLabs, Inc. PortlandLabs Concrete CMS is vulnerable to an arbitrary file deletion vulnerability that stems from allowing traversal of /index.php/ccm/system/file/ upload, which can be exploited by attackers to cause arbitrary file deletion.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Portland Labs Concrete CMS | le | 8.5.7 | |
| Portland Labs Concrete CMS >=9.0.0, | le | 9.0.2 |
Related
nvd
nvd
CVE-2022-30117
2022-06-24 15:15:10
github
github
Path traversal in Concrete CMS
2022-06-25 00:00:54
prion
prion
Design/Logic Flaw
2022-06-24 15:15:00
osv
osv
Path traversal in Concrete CMS
2022-06-25 00:00:54
cve
cve
CVE-2022-30117
2022-06-24 15:15:10
veracode
veracode
Path Traversal
2022-06-27 04:42:26
cvelist
cvelist
CVE-2022-30117
2022-06-24 14:59:59