CVE-2017-10843

Summary

baserCMS version 3.0.14 and earlier, 4.0.5 and earlier allows remote attackers to delete arbitrary files via unspecified vectors when the "File" field is being used in the mail form.

Affected Software

VendorProductVersion RangeStatus
baserCMS Users CommunitybaserCMS3.0.14 and earlieraffected
baserCMS Users CommunitybaserCMS4.0.5 and earlieraffected

Weaknesses

  • Arbitrary File Deletion

ADP Enrichment

CVE Program Container

Additional References

References