Lucene search

CVE-2018-12492

🗓️ 15 Jun 2018 18:00:29Reported by mitreType

cve🔗 web.nvd.nist.gov👁 33 Views🌐 WEB

PHPOK 4.9.032 arbitrary file deletion vulnerability in tpl_control.ph

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 3
Prion	Arbitrary file deletion	15 Jun 201818:29	–	prion
NVD	CVE-2018-12492	15 Jun 201818:29	–	nvd
Cvelist	CVE-2018-12492	15 Jun 201818:00	–	cvelist

Nvd

Node

phpok phpokMatch4.9.032

Source	Link
github	www.github.com/SukaraLin/php_code_audit_project/blob/master/phpok/Phpok%204.9.032%E4%BB%A3%E7%A0%81%E5%AE%A1%E8%AE%A1.md

Parameter	Position	Path	Description	CWE
file	request body	/framework/admin/tpl_control.php	The delfile_f function in PHPOK 4.9.032 allows arbitrary file deletion due to insufficient input validation.	CWE-20

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Jun 2018 18:29Current

7.5High risk

Vulners AI Score7.5

CVSS26.4

CVSS37.5

EPSS0.00244

CWE-20