CVE-2018-7172

2018-02-2715:29:00

Google

osv.dev

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.7%

JSON

In index.php in WonderCMS before 2.4.1, remote attackers can delete arbitrary files via directory traversal.

CPENameOperatorVersion
wondercmseq1.2.0-beta
wondercmseq2.2.0
wondercmseq2.3.0
wondercmseq2.0.1
wondercmseq2.0.2
wondercmseq2.3.1
wondercmseq2.4.0
wondercmseq2.0.0
wondercmseq2.0.6
wondercmseq2.0.5

Name	Operator	Version
wondercms	eq	1.2.0-beta
wondercms	eq	2.2.0
wondercms	eq	2.3.0
wondercms	eq	2.0.1
wondercms	eq	2.0.2
wondercms	eq	2.3.1
wondercms	eq	2.4.0
wondercms	eq	2.0.0
wondercms	eq	2.0.6
wondercms	eq	2.0.5