A directory traversal vulnerability in the component system/manager/class/web/database.php was discovered in Baijiacms V4 which allows attackers to arbitrarily delete folders on the server via the “id” parameter.
CPE | Name | Operator | Version |
---|---|---|---|
baijiacmsv4 | eq | V4.1.4 |