CVE-2022-25412 - CERT CVE

  1. CVE-2022-25412

ID CVE-2022-25412
Sažetak Maxsite CMS v180 was discovered to contain multiple arbitrary file deletion vulnerabilities in /admin_page/all-files-update-ajax.php via the dir and deletefile parameters.
Reference
CVSS
Base: 5.5
Impact: 4.9
Exploitability:8.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW SINGLE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL PARTIAL
CVSS vektor AV:N/AC:L/Au:S/C:N/I:P/A:P
Zadnje važnije ažuriranje 08-03-2022 - 19:13
Objavljeno 28-02-2022 - 23:15