Lei Feng TV CMS (aka LFCMS) 3.8.6 allows Directory Traversal via crafted use of ..* in Template/edit/path URIs, as demonstrated by the admin.php?s=/Template/edit/path/*web*..*..*..*..*1.txt.html URI to read the 1.txt file.
References
Link | Resource |
---|---|
https://github.com/AvaterXXX/CVEs/blob/master/lfdycms.md#directory-traversal | Exploit Third Party Advisory |
Configurations
Information
Published : 2018-12-30 13:29
Updated : 2019-01-10 06:41
NVD link : CVE-2018-20604
Mitre link : CVE-2018-20604
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
lfdycms
- lei_feng_tv_cms