Vulnerabilities > External Control of File Name or Path

DATE	CVE	VULNERABILITY TITLE	RISK
2020-06-03	CVE-2020-5296	External Control of File Name or Path vulnerability in Octobercms October In OctoberCMS (october/october composer package) versions from 1.0.319 and before 1.0.466, an attacker can exploit this vulnerability to delete arbitrary local files of an October CMS server. network low complexity octobercms CWE-73	4.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.