Arbitrary File Manipulation Vulnerability in DanWin Hosting

Arbitrary File Manipulation Vulnerability in DanWin Hosting

CVE-2018-7308 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

A CSRF issue was found in var/www/html/files.php in DanWin hosting through 2018-02-11 that allows arbitrary remote users to add/delete/modify any files in any hosting account.

Learn more about our User Device Pen Test.