CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

NVD•added 2023/02/03 6:15 p.m.•8 views

CVE-2021-36425

Directory traversal vulnerability in phpcms 1.9.25 allows remote attackers to delete arbitrary files via unfiltered $file parameter to unlink method in include/incact/actftptakeover.php file...

5.4CVSS5.6AI score0.01452EPSS

Exploits1References1

Prion•added 2023/02/03 6:15 p.m.•11 views

Directory traversal

Directory traversal vulnerability in phpcms 1.9.25 allows remote attackers to delete arbitrary files via unfiltered $file parameter to unlink method in include/incact/actftptakeover.php file...

5.5CVSS5.6AI score0.01452EPSS

Exploits1References1Affected Software1

CVE•added 2023/02/03 12:0 a.m.•52 views

CVE-2021-36425

CVE-2021-36425 affects phpcms 1.9.25 and related entries describe a directory traversal vulnerability. An attacker can delete arbitrary files by supplying an unfiltered file parameter to the unlink call in the file path include/inc_act/act_ftptakeover.php. The connected documents confirm the vuln...

5.4CVSS5.5AI score0.01452EPSS

Exploits1References1Affected Software1

Positive Technologies•added 2023/02/03 12:0 a.m.•2 views

PT-2023-12268 · Phpcms · Phpcms

Name of the Vulnerable Software and Affected Versions: phpcms version 1.9.25 Description: The issue allows remote attackers to delete arbitrary files due to a directory traversal vulnerability. This is achieved by exploiting an unfiltered file parameter in the unlink method within the include/inc...

5.4CVSS5.4AI score0.01452EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by