mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-07 21:46:40 +02:00
0xMarcio
701 B
701 B
CVE-2018-6022
Description
Directory traversal vulnerability in application/admin/controller/Main.php in NoneCms through 1.3.0 allows remote authenticated users to delete arbitrary files by leveraging back-office access to provide a ..\ in the param.path parameter.
POC
Reference
Github
No PoCs found on GitHub currently.