CVE-2018-18257

Name of the Vulnerable Software and Affected Versions BageCMS version 3.1.3

Description An issue was discovered that allows an attacker to delete any files and folders on the web server via a directory traversal attack using specific URI requests, such as index.php?r=admini/template/batch&command=deleteFile&fileName= or index.php?r=admini/template/batch&command=deleteFolder&folderName=../.

Recommendations For BageCMS version 3.1.3, consider restricting access to the index.php endpoint with r=admini/template/batch and parameters command and fileName or folderName to prevent unauthorized file and folder deletion until a patch is available.