3 matches found
CVE-2022-24248
RiteCMS version 3.1.0 and below suffers from an arbitrary file deletion via path traversal vulnerability in Admin Panel. Exploiting the vulnerability allows an authenticated attacker to delete any file in the web root along with any other file on the server that the PHP process user has the prope...
RiteCMS Directory Traversal (CVE-2022-24248)
A directory traversal vulnerability exists in RiteCMS. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...
CVE-2022-24248
CVE-2022-24248 concerns RiteCMS prior to 3.1.0, where an authenticated user can exploit a directory traversal in the Admin Panel to delete arbitrary files in the web root (and elsewhere the PHP process can access). The vulnerability permits deletion of sensitive files, including the potential to ...