CVE-2018-7172

CVE-2018-7172

EPSS 2.7%

In index.php in WonderCMS before 2.4.1, remote attackers can delete arbitrary files via directory traversal.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://foreversong.cn/archives/1070 https://github.com/robiso/wondercms/commit/64efdc4fd974c83cedd221b46e7c3854a81650ec https://www.wondercms.com/whatsnew