PT-2017-11551 · Basercms · Basercms
Shoji Baba
·
Publicado
2017-08-28
·
Atualizado
2022-05-13
·
CVE-2017-10843
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
baserCMS versions 3.0.14 and earlier
baserCMS versions 4.0.5 and earlier
Description
The issue allows remote attackers to delete arbitrary files via unspecified vectors when the
File field is being used in the mail form.Recommendations
For baserCMS versions 3.0.14 and earlier, update to a version later than 3.0.14.
For baserCMS versions 4.0.5 and earlier, update to a version later than 4.0.5.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Basercms