Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Path traversal vulnerability in Quick.CMS
Vulnerability Description
Absolute path traversal vulnerability in Quick.CMS, version 6.7, the exploitation of which could allow remote users to bypass the intended restrictions and download any file if it has the appropriate permissions outside of documentroot configured on the server via the aDirFiles%5B0%5D parameter in the admin.php page. This vulnerability allows an attacker to delete files stored on the server due to a lack of proper verification of user-supplied input.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
OpenSolution Quick CMS 安全漏洞
Vulnerability Description
OpenSolution Quick CMS是OpenSolution组织的一个免费内容管理系统。 OpenSolution Quick CMS 6.7版本存在安全漏洞,该漏洞源于对用户提供的输入验证不当,存在绝对路径遍历,允许攻击者删除服务器上存储的文件。
CVSS Information
N/A
Vulnerability Type
N/A