VYPR
High severity8.1NVD Advisory· Published Jul 23, 2019· Updated Jun 17, 2026

CVE-2019-14240

CVE-2019-14240

Description

WCMS v0.3.2 has a CSRF vulnerability, with resultant directory traversal, to modify index.html via the /wex/html.php?finish=../index.html URI.

Affected products

2
  • WCMS/WCMSdescription
  • wCMS/wCMSllm-fuzzy
    Range: <=0.3.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.