CVE-2018-16821 - OpenCVE

SeaCMS 6.64 allows arbitrary directory listing via upload/admin/admin_template.php?path=../templets/../../ requests.

No CVSS v3.1

AV:N/AC:L/Au:N/C:P/I:N/A:N

Vendors	Products
Seacms	Seacms

Configuration 1 [-]

cpe:2.3:a:seacms:seacms:6.64:*:*:*:*:*:*:*

References

Link	Resource
http://blog.51cto.com/13770310/2177212	Exploit Third Party Advisory
http://www.seacms.net/thread-6249-1-1.html	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2018-09-21T17:00:00

Updated: 2018-09-21T16:57:01

Reserved: 2018-09-10T00:00:00

Link: CVE-2018-16821

JSON object: View

NVD Information

Status : Analyzed

Published: 2018-09-21T17:29:05.813

Modified: 2018-11-27T21:03:29.547

Link: CVE-2018-16821

JSON object: View

Redhat Information

No data.

CWE