Vulnerability Details : CVE-2019-14240
WCMS v0.3.2 has a CSRF vulnerability, with resultant directory traversal, to modify index.html via the /wex/html.php?finish=../index.html URI.
Vulnerability category: Directory traversalCross-site request forgery (CSRF)
Exploit prediction scoring system (EPSS) score for CVE-2019-14240
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 24 %
Percentile, the proportion of vulnerabilities that are scored at or less