CNNVD-202508-1450 Information

CNNVD ID

CNNVD-202508-1450

Related CVE

CVE-2011-10009

• CNNVD Published: 2025-08-13

Description (Chinese)

S40 CMS是Osirys个人开发者的一个内容管理系统。 S40 CMS 0.4.2版本存在安全漏洞，该漏洞源于index.php页面处理程序中对参数p清理不当，可能导致路径遍历攻击。

Description (English)

S40 CMS is a content management system for Osirys personal developers. The security gap in version S40 CMS 0.4.2 stems from the inappropriate clean-up of parameter p in the index.php page processing process, which could lead to a routing attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-13

Last Modified

2026-02-24

References

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/ http://y-osirys.com/security/exploits/id27 https://web.archive.org/web/20110613222630/ http://s40.biz/ https://web.archive.org/web/20120531114058/ https://www.exploit-db.com/exploits/17129 https://www.vulncheck.com/advisories/s40-cms-path-traversal