CVE-2018-10523

2018-04-27T14:29:00
ID CVE-2018-10523
Type cve
Reporter NVD
Modified 2018-05-24T11:44:22

Description

CMS Made Simple (CMSMS) through 2.2.7 contains a physical path leakage Vulnerability via /modules/DesignManager/action.ajax_get_templates.php, /modules/DesignManager/action.ajax_get_stylesheets.php, /modules/FileManager/dunzip.php, or /modules/FileManager/untgz.php.