Directory Traversal Vulnerability in yccms 3.3 Project's Delete Functions

Directory Traversal Vulnerability in yccms 3.3 Project's Delete Functions

CVE-2020-20290 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Directory traversal vulnerability in the yccms 3.3 project. The delete, deletesite, and deleteAll functions' improper judgment of the request parameters, triggers a directory traversal vulnerability.

Learn more about our Cms Pen Testing.