VYPR
Medium severity6.5NVD Advisory· Published Feb 17, 2019· Updated Jun 17, 2026

CVE-2019-8407

CVE-2019-8407

Description

HongCMS 3.0.0 allows arbitrary file read and write operations via a ../ in the filename parameter to the admin/index.php/language/edit URI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.