2 matches found
CVE-2021-37441
NCH Axon PBX v2.22 and earlier allows path traversal for file deletion via the logdelete?file=/.. substring...
CVE-2021-37441
CVE-2021-37441 affects NCH Axon PBX v2.22 and earlier. The vulnerability is a path-traversal flaw in the logdelete function, exploitable via the logdelete?file=/.. parameter, enabling access to or deletion of arbitrary files outside the intended directory. The connected sources confirm the affect...