Skip to main content
CVE-2018-10424 LOW POC Monitor

mc-admin/post-edit.php in MiniCMS 1.10 allows full path disclosure via a modified id field. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Minicms
NVD GitHub
CVSS 3.0
2.7
EPSS
1.0%
CVE-2018-10423 LOW POC Monitor

mc-admin/post.php in MiniCMS 1.10 allows remote attackers to obtain a directory listing of the top-level directory of the web root via a link that becomes available after posting an article. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Minicms
NVD GitHub
CVSS 3.0
2.7
EPSS
1.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy