CVE-2019-9662 – An issue was discovered in JTBC(PHP) 3.0.1.8. Its cache management module is flawed. An ar …

Vuln ID: CVE-2019-9662

Published:  2019-03-11  05:29:00Z

Description: An issue was discovered in JTBC(PHP) 3.0.1.8. Its cache management module is flawed. An arbitrary file ending in "inc.php" can be deleted via a console/cache/manage.php?type=action&action=batch&batch=delete&ids=../ substring.

Source: NVD.NIST.GOV

 

Tags