2 matches found
CVE-2021-37447
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentdelete?file=/.. for file deletion...
CVE-2021-37447
CVE-2021-37447 concerns NCH Quorum v2.03 and earlier. An authenticated user can perform directory traversal via the parameter documentdelete?file=/.., enabling file deletion on the affected system. The core issue is a path traversal in a function responsible for file deletion, allowing access bey...