Unrated severityNVD Advisory· Published Aug 17, 2022· Updated Aug 3, 2024

WISA Smart Wing CMS File Download Vulnerability

CVE-2021-26639

Description

This vulnerability is caused by the lack of validation of input values for specific functions if WISA Smart Wing CMS. Remote attackers can use this vulnerability to leak all files in the server without logging in system.

Affected products

WISA/Smart Wing CMSllm-create
WISA corp./Smart Wing CMSv5
Range: unspecified

Patches

Vulnerability mechanics

References

www.krcert.or.kr/krcert/secNoticeView.domitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000