Wmcms · Wmcms · CVE-2024-27489
**Name of the Vulnerable Software and Affected Versions**
WMCMS version 4.4
**Description**
An issue in the `DelFile()` function allows attackers to delete arbitrary files via a crafted POST request.
**Recommendations**
For WMCMS version 4.4, consider disabling the `DelFile()` function until a patch is available to prevent arbitrary file deletion.