CVE-2019-7234

Name of the Vulnerable Software and Affected Versions idreamsoft iCMS version 7.0.13

Description An issue was discovered that allows directory traversal via the app parameter, set to /../, in the "admincp.php?app=apps&do=save" endpoint. This can lead to the creation of a ZIP archive file containing the complete contents of any directory, due to an error in "apps.admincp.php". The ZIP archive file can then be downloaded via the "admincp.php?app=apps&do=pack" endpoint.

Recommendations For idreamsoft iCMS version 7.0.13, consider restricting access to the "admincp.php?app=apps&do=save" and "admincp.php?app=apps&do=pack" endpoints to minimize the risk of exploitation. Avoid using the app parameter in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.