High severity7.5NVD Advisory· Published Apr 13, 2018· Updated Jun 17, 2026
CVE-2018-10083
CVE-2018-10083
Description
CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary file deletion vulnerability in the admin dashboard via directory traversal sequences in the val parameter within a cmd=del request, because code under modules\FilePicker does not restrict the val parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.2.7
- Range: <=2.2.7
Patches
Vulnerability mechanics
References
1- github.com/itodaro/cve/blob/master/README.mdnvdExploitTechnical DescriptionThird Party Advisory
News mentions
0No linked articles in our index yet.