OneFileCMS icon indicating copy to clipboard operation
OneFileCMS copied to clipboard
verified publisher icon Self-Evident

onefilecms.php in OneFileCMS through 2017-10-09 might allow attackers to delete anyfile or folders they want on the delete screen

Open havysec opened this issue 7 years ago • 0 comments

access http://fragrant:30001/OneFileCMS/onefilecms.php by username/password

image

access http://fragrant:30001/OneFileCMS/onefilecms.php?i=var/www/html/&f=123.php&p=edit&p=deletefile

image

Click Delete File(s)

image

havysec avatar Jul 03 '18 14:07 havysec