CVE-2018-12530
The CVE-2018-12530 entry concerns MetInfo 6.0.0, where the file admin/app/batch/csvup.php permits a directory traversal via flienamecsv=../ to delete arbitrary files. Exploitation is described as CSRF-enabled, enabling remote attackers to perform file deletions. This vulnerability is mapped in NV...