26 matches found
CVE-2024-27489
An issue in the DelFile function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request...
CVE-2024-27489
An issue in the DelFile function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request...
CVE-2024-27489
An issue in the DelFile function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request...
CVE-2024-27489
The CVE-2024-27489 issue affects WMCMS v4.4 and is tied to the DelFile() function, which allows an attacker to delete arbitrary files via a crafted POST request. Sources consistently describe the vulnerability as a file-deletion flaw in DelFile(), with confirmed references from Red Hat and NVD in...
PT-2024-21919 · Wmcms · Wmcms
Name of the Vulnerable Software and Affected Versions: WMCMS version 4.4 Description: An issue in the DelFile function allows attackers to delete arbitrary files via a crafted POST request. Recommendations: For WMCMS version 4.4, consider disabling the DelFile function until a patch is available ...
CVE-2024-27489
An issue in the DelFile function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request...
Command Execution Vulnerability in WMCMS
WMCMS is based on PHP MYSQL as the core development, free open source professional Chinese labeling system. WMCMS command execution vulnerability , an attacker can use the vulnerability to obtain control of the server...
WMCMS suffers from a file upload vulnerability (CNVD-2021-24931)
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS file upload vulnerability can be exploited to gain control of the server...
Arbitrary File Deletion Vulnerability in WMCMS (CNVD-2021-13595)
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS arbitrary file deletion vulnerability , an attacker can exploit the vulnerability to delete any file under the server...
Code Execution Vulnerability in WMCMS of Chongqing Yuyue Optoelectronics Technology Co. Ltd (CNVD-2020-75026)
WMCMS is based on PHP MYSQL as the core development, free and open source professional Chinese labeling system. WMCMS has a code execution vulnerability. Attackers can use this vulnerability to obtain server administrative privileges...
SQL injection vulnerability in WMCMS Pro da***.my***.php file
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. There is a SQL injection vulnerability in the file da.my.php in the professional version of WMCMS. Attackers can use this vulnerability to obtain server administrative privileges...
WMCMS open source novel system V4.367.977 exists arbitrary file reading vulnerability
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS open source novel system V4.367.977 arbitrary file reading vulnerability , attackers can use the vulnerability to obtain sensitive information...
Arbitrary File Read Vulnerability in WMCMS
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS arbitrary file reading vulnerability, an attacker can exploit the vulnerability to read files under the server...
Arbitrary File Modification Vulnerability in WMCMS
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS arbitrary file modification vulnerability, an attacker can use the vulnerability to modify any file...
Arbitrary Code Execution Vulnerability in WMCMS
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS has an arbitrary code execution vulnerability that can be exploited by attackers to gain administrative privileges on the web server...
XSS Vulnerability in WMCMS
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS has an XSS vulnerability that can be exploited by attackers to obtain an administrator cookie...
Arbitrary File Deletion Vulnerability in WMCMS
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS arbitrary file deletion vulnerability , an attacker can exploit the vulnerability to delete any file under the server...
Arbitrary File Deletion Vulnerability in WMCMS
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS arbitrary file deletion vulnerability, an attacker can exploit the vulnerability to delete any file under the server...
WMCMS backend templates have arbitrary file download vulnerability
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS background templates exist arbitrary file download vulnerability. Attackers can use this vulnerability to download arbitrary files...
Arbitrary File Deletion Vulnerability in Background File List of WMCMS System
WMCMS is based on PHP + MYSQL as the core development, free + open source professional Chinese labeling system. WMCMS system background file list exists arbitrary file deletion vulnerability. Attackers can use the vulnerability to delete arbitrary files, resulting in system reinstallation...