CVE-2018-6880

CVE-2018-6880

EPSS 1.8%

EmpireCMS 6.6 through 7.2 allows remote attackers to discover the full path via an array value for a parameter to class/connect.php.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/kongxin520/EmpireCMS/blob/master/EmpireCMS.md https://kongxin.gitbook.io/empirecms/