CVE-2024-27489

July 19, 2024, 3:15 p.m.

Tags

cve@mitre.org
2024-07-19
CVE-2024-27489

Product(s) Impacted

WMCMS

  • 4.4

Description

An issue in the DelFile() function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request.

Weaknesses

Date

Published: July 19, 2024, 3:15 p.m.

Last Modified: July 19, 2024, 3:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://gist.github.com/yyyyy7777777/a36541cb60d9e55628f78f2a68968212
cve@mitre.org
https://gitee.com/y1336247431/poc-public/issues/I920OW
cve@mitre.org