An issue was discovered in Repute ARForms 3.5.1 and prior. An attacker is able to delete any file on the server with web server privileges by sending a malicious request to admin-ajax.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-03-17T21:30:40
Updated: 2024-08-05T10:01:54.662Z
Reserved: 2018-08-23T00:00:00
Link: CVE-2018-15818
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-03-21T16:00:21.407
Modified: 2019-03-22T18:11:50.877
Link: CVE-2018-15818
Redhat
No data.