CVE-2023-7041 | codelyfe Stupid Simple CMS up to 1.2.4 /file-manager/rename.php newName path traversal

Posted by Angelo Barbosa | Dec 21, 2023 | CVE

A vulnerability, which was classified as critical, has been found in codelyfe Stupid Simple CMS up to 1.2.4. Affected by this issue is some unknown functionality of the file /file-manager/rename.php. The manipulation of the argument newName leads to path traversal: ‘../filedir’.

This vulnerability is handled as CVE-2023-7041. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2023-7041 | codelyfe Stupid Simple CMS up to 1.2.4 /file-manager/rename.php newName path traversal

Related Posts

CVE-2023-7110 | code-projects Library Management System 2.0 login.php student sql injection

CVE-2023-40110 | Google Android 11/12/12L/13/14 MtpPacket.cpp out-of-bounds write

CVE-2024-10200 | Wellchoose Administrative Management System path traversal

CVE-2023-51369 | SysBasics Customize My Account for WooCommerce Plugin up to 1.8.3 on WordPress cross-site request forgery