2 matches found
CVE-2018-10516
In CMS Made Simple CMSMS through 2.2.7, the "file rename" operation in the admin dashboard contains a sensitive information disclosure vulnerability, exploitable by an admin user, that can cause DoS by moving config.php to the upload/ directory...
CVE-2018-10516
CVE-2018-10516 affects CMS Made Simple (CMSMS) up to version 2.2.7. The vulnerability lies in the admin dashboard “file rename” operation, which can disclose sensitive information and cause a Denial of Service by moving the config.php file into the upload/ directory. The issue is exploitable by a...