Security Advisory

CVE-2018-9850

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-04-08 02:00:00

Last updated 2024-09-17 01:10:40

Assigner mitre

State PUBLISHED

Description

In Gxlcms QY v1.0.0713, LibLibActionAdminDataAction.class.php allows remote attackers to delete any file via directory traversal sequences in the id parameter of an Admin-Data-del request.

← Browse all CVEs View on cve.org ↗