We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-27489



Assignermitre
Reserved2024-02-26
Published2024-07-19
Updated2024-08-02

Description

An issue in the DelFile() function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request.

References

https://gitee.com/y1336247431/poc-public/issues/I920OW

https://gist.github.com/yyyyy7777777/a36541cb60d9e55628f78f2a68968212

cve.org CVE-2024-27489

nvd.nist.gov CVE-2024-27489

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-27489
Support options

Helpdesk Telegram

Subscribe to our newsletter to learn more about our work.