CVE-2018-19748

Name of the Vulnerable Software and Affected Versions SDCMS version 1.6

Description The issue allows for reading arbitrary files via a directory traversal attack. This is achieved by manipulating the root parameter in the /api/plug/attachment/controller/admincontroller.php endpoint, which must be base64 encoded.

Recommendations For SDCMS version 1.6, as a temporary workaround, consider restricting access to the admincontroller.php file until a patch is available. Avoid using the root parameter in the affected endpoint until the issue is resolved.