CVE-2018-16437: Path Traversal
First published: Wed Sep 05 2018(Updated: )
Gxlcms 2.0 before bug fix 20180915 has Directory Traversal exploitable by an administrator.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Usualtool CMS | =2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-16437?
The severity of CVE-2018-16437 is medium with a severity value of 4.9.
How can an administrator exploit the Directory Traversal vulnerability in Gxlcms 2.0 before bug fix 20180915?
An administrator can exploit the Directory Traversal vulnerability in Gxlcms 2.0 before bug fix 20180915 by navigating to a restricted directory using crafted requests to access files outside the intended directory.
What is the affected software for CVE-2018-16437?
The affected software for CVE-2018-16437 is Gxlcms 2.0.
How can I fix the Directory Traversal vulnerability in Gxlcms 2.0 before bug fix 20180915?
To fix the Directory Traversal vulnerability in Gxlcms 2.0 before bug fix 20180915, apply the bug fix 20180915 or upgrade to a patched version of Gxlcms.
What is the Common Weakness Enumeration (CWE) ID for CVE-2018-16437?
The Common Weakness Enumeration (CWE) ID for CVE-2018-16437 is 22.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/gxlcms
- canonical/usualtool cms
- version/usualtool cms/2.0