3 matches found
CVE-2020-20944
An issue in /admin/index.php?lfj=mysql=del of Qibosoft v7 allows attackers to arbitrarily delete files...
CVE-2020-20944
Qibosoft v7 is affected by an arbitrary file deletion vulnerability via /admin/index.php?lfj=mysql&action=del. The root cause is the action=del parameter enabling deletion, as described in PT-2021-10556. Impact: potential unauthorized file removal. Remediation: restrict access to the /admin/index...
CVE-2020-20944
An issue in /admin/index.php?lfj=mysql&action=del of Qibosoft v7 allows attackers to arbitrarily delete files...