Security Advisory

CVE-2020-18178

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-18 18:03:38

Last updated 2024-08-04 14:00:48

Assigner mitre

State PUBLISHED

Description

Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax."

← Browse all CVEs View on cve.org ↗