Description
MCMS v5.2.4 was discovered to contain an arbitrary file deletion vulnerability via the component /template/unzip.do.
Remediation
References
https://lycshub.github.io/2021/12/28/MCMS-vulnerabilities/
Related Vulnerabilities
CVE-2022-37724 Vulnerability in maven package wonder.utilities:utilities
CVE-2020-21485 Vulnerability in maven package org.alluxio:alluxio-parent
CVE-2023-26487 Vulnerability in npm package vega-functions
CVE-2019-20149 Vulnerability in maven package org.webjars.npm:kind-of
CVE-2020-28500 Vulnerability in maven package org.webjars.npm:lodash