4 matches found
CVE-2018-6022
Directory traversal vulnerability in application/admin/controller/Main.php in NoneCms through 1.3.0 allows remote authenticated users to delete arbitrary files by leveraging back-office access to provide a ..\ in the param.path parameter...
CVE-2018-6022
Directory traversal vulnerability in application/admin/controller/Main.php in NoneCms through 1.3.0 allows remote authenticated users to delete arbitrary files by leveraging back-office access to provide a ..\ in the param.path parameter...
CVE-2018-6022
Directory traversal vulnerability in application/admin/controller/Main.php in NoneCms through 1.3.0 allows remote authenticated users to delete arbitrary files by leveraging back-office access to provide a ..\ in the param.path parameter...
CVE-2018-6022
CVE-2018-6022 : A directory traversal vulnerability exists in NoneCms (versions through 1.3.0) in the file application/admin/controller/Main.php . The issue allows remote authenticated users with back-office access to delete arbitrary files by supplying a backslash sequence (for example, ..\) in ...