oss-sec mailing list archives

CVE Request - Intelliants Subrion CMS Arbitrary Files Delete

From: 曾鸿坤 <hongkun.zeng () dbappsecurity com cn>
Date: Sat, 27 Aug 2016 22:14:13 +0800 (GMT+08:00)

Intelliants Subrion CMS Arbitrary Files Delete
This vulnerability allows remote authenticated users to delete arbitrary files on the server.
Fix commit: https://github.com/intelliants/subrion/commit/bf2596f2ab27e37456910886e69b48484a76dd64


The auto-upgrader patch has been released.
Could you allocate a CVE ID for this?


Thank you

Current thread:

CVE Request - Intelliants Subrion CMS Arbitrary Files Delete 曾鸿坤 (Aug 27)