CVE-2019-7235

Name of the Vulnerable Software and Affected Versions idreamsoft iCMS version 7.0.13

Description An issue was discovered that allows directory traversal via the app parameter in the "admincp.php?app=apps&do=save" endpoint, enabling an attacker to designate an arbitrary directory. This directory can then be deleted via an "admincp.php?app=apps&do=uninstall" request.

Recommendations For idreamsoft iCMS version 7.0.13, consider restricting access to the "admincp.php?app=apps&do=save" and "admincp.php?app=apps&do=uninstall" endpoints to minimize the risk of exploitation. As a temporary workaround, consider disabling the save and uninstall functions in the admincp.php file until a patch is available.