Description
MCMS v5.2.5 was discovered to contain an arbitrary file deletion vulnerability via the component oldFileName.
Remediation
References
https://github.com/ming-soft/MCMS/issues/59
Related Vulnerabilities
CVE-2021-25941 Vulnerability in npm package deep-override
CVE-2021-44228 Vulnerability in maven package org.apache.logging.log4j:log4j-core
CVE-2020-36649 Vulnerability in maven package org.webjars.bowergithub.mholt:papaparse
CVE-2020-14966 Vulnerability in npm package jsrsasign
CVE-2021-29480 Vulnerability in maven package io.ratpack:ratpack-session