Description
MCMS v5.2.5 was discovered to contain an arbitrary file deletion vulnerability via the component oldFileName.
Remediation
References
https://github.com/ming-soft/MCMS/issues/59
Related Vulnerabilities
CVE-2022-41930 Vulnerability in maven package org.xwiki.platform:xwiki-platform-user-profile-ui
CVE-2021-37580 Vulnerability in maven package org.apache.shenyu:shenyu-admin
CVE-2020-8237 Vulnerability in maven package org.webjars.bower:json-bigint
CVE-2022-25645 Vulnerability in maven package org.webjars.npm:dset