High severity7.5OSV Advisory· Published Sep 18, 2018· Updated Jun 17, 2026
CVE-2018-16820
CVE-2018-16820
Description
admin/index.php in Monstra CMS 3.0.4 allows arbitrary directory listing via id=filesmanager&path=uploads/.......//./.......//./ requests.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- blog.51cto.com/13770310/2173957nvdExploitThird Party Advisory
- github.com/monstra-cms/monstra/issues/457nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.