Severity by source
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Primary rating from Vendor (mitre) · only source for this CVE.
CVSS VectorVendor: mitre
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
3DescriptionCVE.org
Incorrect access control in the file_details.asp endpoint of DDSN Interactive Acora CMS v10.7.1 allows attackers with editor privileges to access sensitive files via crafted requests.
AnalysisAI
Incorrect access control in the file_details.asp endpoint of DDSN Interactive Acora CMS version 10.7.1 permits authenticated users with editor privileges to access sensitive files through crafted requests, resulting in information disclosure. This vulnerability requires valid editor-level credentials and direct knowledge of the vulnerable endpoint, limiting but not eliminating real-world risk. No active exploitation or public proof-of-concept code has been independently confirmed at this time.
Technical ContextAI
The vulnerability exists in the file_details.asp server-side script endpoint, which appears to be part of the Acora CMS administrative interface. The root cause is an access control flaw (CWE category information disclosure via improper authorization) where the application fails to properly validate user permissions before returning sensitive file contents. The ASP (Active Server Pages) technology indicates this is a legacy or Windows-based CMS platform. The affected component processes file retrieval requests but does not enforce adequate privilege boundaries between different user roles, allowing editor-level users to bypass intended access restrictions on sensitive resources.
RemediationAI
Upgrade DDSN Interactive Acora CMS from version 10.7.1 to the next available patched release. No specific patch version number is documented in the provided references. In the interim, apply the following mitigating controls: (1) restrict editor role assignment to trusted administrators only; (2) implement network-level access controls to limit direct access to the /file_details.asp endpoint; (3) monitor access logs for suspicious requests to sensitive file paths; (4) review and validate user role assignments within the CMS. Consult the DDSN vendor advisory at http://ddsn.com and Acora documentation at http://acora.com for specific patch availability and upgrade instructions.
Remote code execution in APScheduler (all versions through 3.10.x and 4.0.0a5) is achievable when applications deseriali
Unauthenticated remote OS command injection in MeiG Smart FORGE_SLT711 cellular gateway firmware MDM9607.LE.1.0-00110-ST
Unauthenticated API access in LalanaChami Pharmacy Management System (commit 5c3d028) allows remote attackers to dump al
In Citrix Cloud through 2025-11-10, an account with read-only access can trigger the beginning of a workflow for write o
Giflib 5.2.2 contains a buffer overflow in the EGifGCBToExtension function that fails to validate allocated memory when
Denial of service in GPAC's MP4Box multimedia tool (versions before 26.02.0) arises from a use-after-free in the gf_sei_
Arbitrary kernel memory read/write in Realtek rtl819x Jungle SDK Wi-Fi driver allows local unprivileged attackers to acc
Denial of service in GPAC's MP4Box/libgpac media importer (versions before 26.02.0) lets an attacker crash the tool by s
An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a Denial of S
Denial of service in relibc (the Redox OS C standard library) at commit 61f42d allows attackers to crash a process by ge
An issue in the pthread_rwlockattr_setpshared() function of relibc commit 61f42d allows attackers to cause a Denial of S
Denial of service in relibc (the Redox OS C standard library implementation, commit 61f42d) lets attackers crash a proce
Same weakness CWE-284 – Improper Access Control
View allSame technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-17094
GHSA-84pc-6j7w-65xg