CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
60.0%
Directory traversal vulnerability in delete.php in Pulse CMS before 1.2.3 allows remote authenticated users to delete arbitrary files via directory traversal sequences in the f parameter.
Vendor | Product | Version | CPE |
---|---|---|---|
pulsecms | pulse_cms | * | cpe:2.3:a:pulsecms:pulse_cms:*:*:*:*:*:*:*:* |
pulsecms | pulse_cms | 1.0 | cpe:2.3:a:pulsecms:pulse_cms:1.0:-:*:*:*:*:*:* |
pulsecms | pulse_cms | 1.1 | cpe:2.3:a:pulsecms:pulse_cms:1.1:*:*:*:*:*:*:* |
pulsecms | pulse_cms | 1.01 | cpe:2.3:a:pulsecms:pulse_cms:1.01:*:*:*:*:*:*:* |
pulsecms | pulse_cms | 1.2 | cpe:2.3:a:pulsecms:pulse_cms:1.2:*:*:*:*:*:*:* |
pulsecms | pulse_cms | 1.2.1 | cpe:2.3:a:pulsecms:pulse_cms:1.2.1:*:*:*:*:*:*:* |
pulsecms | pulse_cms | 1.15 | cpe:2.3:a:pulsecms:pulse_cms:1.15:*:*:*:*:*:*:* |
pulsecms | pulse_cms | 1.16 | cpe:2.3:a:pulsecms:pulse_cms:1.16:*:*:*:*:*:*:* |
pulsecms | pulse_cms | 1.17 | cpe:2.3:a:pulsecms:pulse_cms:1.17:*:*:*:*:*:*:* |
pulsecms | pulse_cms | 1.18 | cpe:2.3:a:pulsecms:pulse_cms:1.18:*:*:*:*:*:*:* |