CVE-2024-27489

HIGH

WMCMS <4.4 - File Deletion

Title source: llm

An issue in the DelFile() function of WMCMS v4.4 allows attackers to delete arbitrary files via a crafted POST request.

gitee

by y1336247431 · phpwriteup

CVSS v3 7.5

EPSS 0.0013

EPSS Percentile 32.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE

CWE-473 CWE-791

Status published

Published Jul 19, 2024

Tracked Since Feb 18, 2026