2 matches found
CVE-2018-10521
In CMS Made Simple CMSMS through 2.2.7, the "file move" operation in the admin dashboard contains an arbitrary file movement vulnerability that can cause DoS, exploitable by an admin user, because config.php can be moved into an incorrect directory...
CVE-2018-10521
CMS Made Simple (CMSMS) prior to version 2.2.7 contains an arbitrary file movement vulnerability in the admin dashboard’s “file move” operation. This issue can be exploited by an admin user to cause a denial of service by moving the config.php file into an incorrect directory. Root cause: the fil...