CVE-2023-35860

2024-06-1316:15:10

[email protected]

web.nvd.nist.gov

directory traversal

modern campus

omni cms

remote attack

file system enumeration

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.0%

JSON

A Directory Traversal vulnerability in Modern Campus - Omni CMS 2023.1 allows a remote, unauthenticated attacker to enumerate file system information via the dir parameter to listing.php or rss.php.

References

lp.constantcontactpages.com/cu/c2nSB5D/moderncampuscve