CVE-2021-41729 · Vexday

CVE-2021-41729

EPSS 1.0%

BaiCloud-cms v2.5.7 is affected by an arbitrary file deletion vulnerability, which allows an attacker to delete arbitrary files on the server through /user/ppsave.php.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/meiko-S/BaiCloud-cms/issues/3