Vulnerabilities > CVE-2020-21356 - Exposure of Resource to Wrong Sphere vulnerability in Popojicms 1.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
An information disclosure vulnerability in upload.php of PopojiCMS 1.2 leads to physical path disclosure of the host when 'name = "file" is deleted during file uploads.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |