CVE-2020-21590

Published April 2nd, 2021

View on NVD ↗

CVSS v3

4.3

MEDIUM

CVSS v2

4

MEDIUM

Affected

1

PROJECT

Description

Directory traversal in coreframe/app/template/admin/index.php in WUZHI CMS 4.1.0 allows attackers to list files in arbitrary directories via the dir parameter.

wuzhicms/wuzhicms

php 内容管理系统

GitHub

212