Security Advisory

CVE-2019-8407

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-02-17 18:00:00
Last updated 2024-08-04 21:17:31
Assigner mitre
State PUBLISHED

Description

HongCMS 3.0.0 allows arbitrary file read and write operations via a ../ in the filename parameter to the admin/index.php/language/edit URI.

← Browse all CVEs View on cve.org ↗