CVE-2021-34129
LaikeTui 3.5.0 is affected by a directory traversal vulnerability that permits remote authenticated users to delete arbitrary files. The issue occurs through path traversal in the uploadImg, oldpic, or imgurl parameters, enabling deletion of install.lock and potentially allowing the attacker to r...