Unrated severityNVD Advisory· Published Sep 7, 2021· Updated Aug 4, 2024
CVE-2021-39500
CVE-2021-39500
Description
Eyoucms 1.5.4 is vulnerable to Directory Traversal. Due to a lack of input data sanitizaton in param tpldir, filename, type, nid an attacker can inject "../" to escape and write file to writeable directories.
Affected products
2- Eyoucms/Eyoucmsdescription
Patches
Vulnerability mechanics
References
1- github.com/eyoucms/eyoucms/releases/tag/v1.5.4mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.