Vulnerabilities > CVE-2022-29720 - Files or Directories Accessible to External Parties vulnerability in 74Cms 74Cmsse 3.5.1

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
74cms
CWE-552
NVD
Published: 2022-05-26
Updated: 2022-06-03

Summary

74cmsSE v3.5.1 was discovered to contain an arbitrary file read vulnerability via the component \index\controller\Download.php.

Vulnerable Configurations

Part Description Count
Application
74Cms
1

Common Weakness Enumeration (CWE)

References