An arbitrary file deletion vulnerability was discovered on htmly v2.7.5 which allows remote attackers to use any absolute path to delete any file in the server should they gain Administrator privileges.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/danpros/htmly/issues/412 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-05-21T17:11:44
Updated: 2024-08-04T15:05:11.592Z
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-23766
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-05-21T18:15:07.923
Modified: 2022-07-12T17:42:04.277
Link: CVE-2020-23766
Redhat
No data.