Gxlcms QY Arbitrary File Deletion Vulnerability
Gxlcms QY is an enterprise website creation system. A security vulnerability exists in the Lib\Lib\Action\Admin\DataAction.class.php file in Gxlcms QY version 1.0.0713. A remote attacker can exploit this vulnerability by deleting arbitrary files with the 'id' parameter in the Admin-Data-del reque...