Arbitrary Directory Listing Vulnerability in Monstra CMS 3.0.4

Arbitrary Directory Listing Vulnerability in Monstra CMS 3.0.4

CVE-2018-16820 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

admin/index.php in Monstra CMS 3.0.4 allows arbitrary directory listing via id=filesmanager&path=uploads/.......//./.......//./ requests.

Learn more about our Cms Pen Testing.