Security Advisory

CVE-2017-11500

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-07-20 22:00:00

Last updated 2024-09-16 20:31:52

Assigner mitre

State PUBLISHED

Description

A directory traversal vulnerability exists in MetInfo 5.3.17. A remote attacker can use .. to delete any .zip file via the filenames parameter to /admin/system/database/filedown.php.

← Browse all CVEs View on cve.org ↗