CVE-2018-20478

Name of the Vulnerable Software and Affected Versions S-CMS version 1.0

Description The issue allows unauthorized access to certain files, including PHP source code, by manipulating the DownName parameter in the "admin/download.php" endpoint with a mixed-case file extension. For example, using DownName=download.Php can facilitate this unauthorized access.

Recommendations For S-CMS version 1.0, consider restricting access to the "admin/download.php" endpoint or validating and sanitizing the DownName parameter to prevent mixed-case extensions from being used to access sensitive files. As a temporary workaround, restrict access to the download.Php file until a proper fix is implemented.