CVE-2022-27333

Name of the Vulnerable Software and Affected Versions idcCMS version 1.10

Description The issue allows attackers to arbitrarily delete the install.lock file, resulting in a reset of the CMS settings and data.

Recommendations For idcCMS version 1.10, consider restricting access to the install.lock file to prevent unauthorized deletion until a patch is available. As a temporary workaround, monitor the install.lock file for any unexpected changes and regularly back up CMS settings and data to minimize potential losses. At the moment, there is no information about a newer version that contains a fix for this vulnerability.