CVE-2018-16820 – admin/index.php in Monstra CMS 3.0.4 allows arbitrary directory listing via id=filesmanage …

0

Vuln ID: CVE-2018-16820

Published:  2018-09-18  21:29:03Z

Description: admin/index.php in Monstra CMS 3.0.4 allows arbitrary directory listing via id=filesmanager&path=uploads/…….//./…….//./ requests.

Source: NVD.NIST.GOV