Jtbccms V1.0 'jtbc_cms_admin_manage_delete_filedisp()' function has a file deletion vulnerability
Jtbccms is a website system that can expand and clone existing modules. Jtbccms version 1.0 'jtbccmsadminmanagedeletefiledisp' function has a file deletion vulnerability. Due to receiving filepath variable to do iicstr function for adslashes filtering, the code conversion can be directly deleted ...