SAPID CMS prior to 1.2.3.03 allows remote malicious users to bypass authentication via direct requests to the usr/system files (1) insert_file.php, (2) insert_image.php, (3) insert_link.php, (4) insert_qcfile.php, and (5) edit.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redgraphic sapid cms 1.2.3 |
||
redgraphic sapid cms |