CVE-2018-18626
The vulnerability CVE-2018-18626 affects PHPYun v4.6, where del_action() mishandles the sql parameter in admin/model/database.class.php, allowing deletion of arbitrary files or directories via admin/index.php?m=database&c=del. Connected sources (Red Hat, CVE listings, PT-Security) confirm the iss...