Description
MCMS v5.2.5 was discovered to contain an arbitrary file deletion vulnerability via the component oldFileName.
Remediation
References
https://github.com/ming-soft/MCMS/issues/59
Related Vulnerabilities
CVE-2018-21268 Vulnerability in npm package traceroute
CVE-2022-21680 Vulnerability in npm package marked
CVE-2017-11341 Vulnerability in maven package org.webjars.npm:node-sass
CVE-2020-11003 Vulnerability in npm package @fraction/oasis
CVE-2020-14340 Vulnerability in maven package org.jboss.xnio:xnio-api