Security Advisory

CVE-2018-10082

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-04-13 05:00:00

Last updated 2024-09-16 22:51:49

Assigner mitre

State PUBLISHED

Description

CMS Made Simple (CMSMS) through 2.2.7 allows physical path leakage via an invalid /index.php?page= value, a crafted URI starting with /index.php?mact=Search, or a direct request to /admin/header.php, /admin/footer.php, /lib/tasks/class.ClearCache.task.php, or /lib/tasks/class.CmsSecurityCheck.task.php.

← Browse all CVEs View on cve.org ↗