32 matches found
CVE-2024-48225
Funadmin v5.0.2 has an arbitrary file deletion vulnerability in /curd/index/delfile...
CVE-2024-48225
Funadmin v5.0.2 contains an arbitrary file deletion vulnerability in the /curd/index/delfile endpoint. Multiple connected sources consistently describe this issue, noting that lack of proper access control allows unauthorized deletion of files. The vulnerability is categorized as a high-integrity...
CVE-2024-27489
An issue in the DelFile function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request...
CVE-2024-27489
An issue in the DelFile function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request...
PT-2024-21919 · Wmcms · Wmcms
Name of the Vulnerable Software and Affected Versions: WMCMS version 4.4 Description: An issue in the DelFile function allows attackers to delete arbitrary files via a crafted POST request. Recommendations: For WMCMS version 4.4, consider disabling the DelFile function until a patch is available ...
CVE-2024-27489
The CVE-2024-27489 issue affects WMCMS v4.4 and is tied to the DelFile() function, which allows an attacker to delete arbitrary files via a crafted POST request. Sources consistently describe the vulnerability as a file-deletion flaw in DelFile(), with confirmed references from Red Hat and NVD in...
CVE-2024-27489
An issue in the DelFile function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request...
PHPOK Arbitrary File Deletion Vulnerability
PHPOK is an enterprise building system that supports expansion. An arbitrary file deletion vulnerability exists in the 'delfilef' function in the framework/admin/tplcontrol.php file in PHPOK version 4.9.032. An attacker can exploit this vulnerability to delete arbitrary files...
NewvCommon.ocx Active-X Insecure Method
NewvCommon.ocx ActiveX Insecure Method Vulnerability ======== Vulnerable:All Version Vendor:www.newv.com.cn Details: ======== A Insecure method vulnerability has been found in NewV SmartClient. The specific flaw exists within the DelFile method of the Newv ActiveX control NewvCommon.ocx. The...
CVE-2006-6329
index.php for TorrentFlux 2.2 allows remote attackers to delete files by specifying the target filename in the delfile parameter...
CVE-2006-6329
index.php for TorrentFlux 2.2 allows remote attackers to delete files by specifying the target filename in the delfile parameter...
CVE-2006-6329
index.php for TorrentFlux 2.2 allows remote attackers to delete files by specifying the target filename in the delfile parameter...