CVE-2022-25412

Publication date

2022-02-28 22:55:20

Family

mitre

State

PUBLISHED

Description

Maxsite CMS v180 was discovered to contain multiple arbitrary file deletion vulnerabilities in /admin_page/all-files-update-ajax.php via the dir and deletefile parameters.