2 matches found
CVE-2022-22914
An incorrect access control issue in the component FileManager of Ovidentia CMS 6.0 allows authenticated attackers to to view and download content in the upload directory via path traversal...
CVE-2022-22914
CVE-2022-22914 affects Ovidentia CMS 6.0 FileManager. The issue is an incorrect access control that permits an authenticated attacker to view and download files in the upload directory via path traversal. Underlying cause: insufficient restriction on file paths in FileManager. Impact: exposure of...