VYPR
High severity7.5NVD Advisory· Published Apr 13, 2018· Updated Jun 17, 2026

CVE-2018-10083

CVE-2018-10083

Description

CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary file deletion vulnerability in the admin dashboard via directory traversal sequences in the val parameter within a cmd=del request, because code under modules\FilePicker does not restrict the val parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2018-10083 · High · VYPR