VYPR
High severity7.5NVD Advisory· Published Sep 17, 2018· Updated Jun 17, 2026

CVE-2018-17125

CVE-2018-17125

Description

CScms 4.1 allows arbitrary directory deletion via a dir=..\\ substring to plugins\sys\admin\Plugins.php.

Affected products

1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.