2021-08-06 22:36:55
mitre
PUBLISHED
An information disclosure vulnerability in upload.php of PopojiCMS 1.2 leads to physical path disclosure of the host when name = "file" is deleted during file uploads.