CVE-2022-25412

Published February 28th, 2022

View on NVD ↗

CVSS v3

8.1

HIGH

CVSS v2

5.5

MEDIUM

Affected

PROJECT

Description

Maxsite CMS v180 was discovered to contain multiple arbitrary file deletion vulnerabilities in /admin_page/all-files-update-ajax.php via the dir and deletefile parameters.

maxsite/cms

MaxSite CMS. Free CMS for your website. Smart alternative to WordPress

GitHub

158