Cuppa is a project open source, that seeks offer a adaptable CMS to any project (news or exist developments, web, desktop or mobile project) that don't have a Content Manager System and need implement one without realize heavy migration processes, nor take hours learning new, complex structures and methodologies.
10
stars
4
forks
source link
Unauthorized Arbitrary File Read vulnerability exists in CuppaCMS /administrator/templates/default/html/windows/right.php #32
Description: The vulnerability is present in the “/administrator/templates/default/html/windows/right.php" , and can
be exploited throuth a POST request via the ‘url’ parameters.
An Unauthorized attacker can read arbitrary file via copy function
request:
Description: The vulnerability is present in the “/administrator/templates/default/html/windows/right.php" , and can be exploited throuth a POST request via the ‘url’ parameters.