CVE List

CVE-2020-18070

Severe 9.1

Path Traversal in iCMS v7.0.13 allows remote attackers to delete folders by injecting commands into a crafted HTTP request to the "do_del()" method of the component "database.admincp.php".

Published April 30, 2021.

Affected software

Idreamsoft Icms

Reference links

Sign Up for Alerts