3 matches found
EUVD-2022-5083
Malicious code in bioql PyPI...
EUVD-2022-3986
Malicious code in bioql PyPI...
CVE-2020-29555
The BackupDelete functionality in Grav CMS through 1.7.0-rc.17 allows an authenticated attacker to delete arbitrary files on the underlying server by exploiting a path-traversal technique. This vulnerability can also be exploited by an unauthenticated attacker due to a lack of CSRF protection...