CVE-2018-18485
PHPSHE 1.7 contains an arbitrary-file-deletion vulnerability in admin.php?mod=db&act=del, exploitable via directory traversal in the dbname parameter. Successful exploitation allows a remote attacker to delete arbitrary files, including install.lock, potentially reloading the product. The connect...