OKLite suffers from a logic flaw vulnerability (CNVD-2020-71655)

OKLite is a minimalist enterprise website system, the main target group is the display enterprise website users, so that the traditional small business quickly deploy the website. OKLite suffers from a logic flaw vulnerability that can be exploited by attackers to compromise the integrity of the...

CVE-2019-16132

An issue was discovered in OKLite v1.2.25. framework/admin/tplcontrol.php allows remote attackers to delete arbitrary files via a title directory-traversal pathname followed by a crafted substring...