2 matches found
CVE-2020-25873
A directory traversal vulnerability in the component system/manager/class/web/database.php was discovered in Baijiacms V4 which allows attackers to arbitrarily delete folders on the server via the "id" parameter...
CVE-2020-25873
CVE-2020-25873 is a directory traversal vulnerability in Baijiacms V4 affecting the file system access through the component at system/manager/class/web/database.php. The issue arises from how the application handles the id parameter, enabling an attacker to arbitrarily delete folders on the serv...