15 matches found
WordPress Aviation Weather from NOAA plugin <= 0.7.2 - Arbitrary File Deletion Vulnerability
Arbitrary File Deletion Vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Aviation Weather from NOAA versions = 0.7.2...
CVE-2020-23766
An arbitrary file deletion vulnerability was discovered on htmly v2.7.5 which allows remote attackers to use any absolute path to delete any file in the server should they gain Administrator privileges...
CVE-2025-45238
foxcms v1.2.5 was discovered to contain an arbitrary file deletion vulnerability via the delRestoreSerie method...
CVE-2025-29150
BlueCMS 1.6 suffers from Arbitrary File Deletion via the id parameter in an /publish.php?act=del request...
CVE-2023-27700
MuYuCMS v2.2 was discovered to contain an arbitrary file deletion vulnerability via the component /accessory/picdel.html...
CVE-2023-23151
bloofoxCMS v0.5.2.1 was discovered to contain an arbitrary file deletion vulnerability via the component /include/inccontentmedia.php...
CVE-2022-43196
dedecmdv6 v6.1.9 is vulnerable to Arbitrary file deletion via filemanagecontrol.php...
CVE-2022-33897
A directory traversal vulnerability exists in the webserver /ajax/remove/ functionality of Robustel R1510 3.1.16. A specially-crafted network request can lead to arbitrary file deletion. An attacker can send a sequence of requests to trigger this vulnerability...
CVE-2022-36687
The CVE-2022-36687 entry concerns Ingredients Stock Management System v1.0 with an arbitrary file deletion vulnerability in the component /classes/Master.php?f=delete_img. The root cause is lack of validation for the delete file path, enabling arbitrary file deletion. Documented impacts include h...
CVE-2022-27277
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file deletion vulnerability via the function sub17C08...
Arbitrary File Deletion Vulnerability in BossCMS of Wenzhou Huanxin Information Technology Company Limited (CNVD-2022-21723)
BossCMS is a content management system based on self-developed PHP framework MySQL architecture developed by Wenzhou Huyin Information Technology Co. BossCMS has an arbitrary file deletion vulnerability, which can be exploited to delete any file on the server...
Arbitrary File Deletion Vulnerability in HongCMS (CNVD-2021-47696)
HongCMS is a lightweight website system. HongCMS suffers from an arbitrary file deletion vulnerability that can be exploited by an attacker to delete arbitrary files...
Arbitrary File Deletion Vulnerability in CodeIgniter
CodeIgniter is a PHP framework. CodeIgniter has an arbitrary file deletion vulnerability. An attacker can exploit the vulnerability to delete arbitrary files...
Arbitrary File Deletion Vulnerability in SeaCMS
SeaCMS Ocean CMS is a web content management system based on PHP+MYSQL architecture and supports cross-platform operation. SeaCMS has an arbitrary file deletion vulnerability. An attacker can exploit the vulnerability to delete arbitrary files...
CVE-2018-14916
LOYTEC LGATE-902 6.3.2 devices allow Arbitrary file deletion...