Description
MCMS v5.2.5 was discovered to contain an arbitrary file deletion vulnerability via the component oldFileName.
Remediation
References
https://github.com/ming-soft/MCMS/issues/59
Related Vulnerabilities
CVE-2020-36188 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind
CVE-2020-11994 Vulnerability in maven package org.apache.camel:camel-robotframework
CVE-2023-5572 Vulnerability in npm package @vrite/sdk
CVE-2022-43430 Vulnerability in maven package com.compuware.jenkins:compuware-topaz-for-total-test
CVE-2016-10735 Vulnerability in maven package org.webjars.bowergithub.jasny:bootstrap