Directory Traversal Vulnerability in Xinha 0.96 Allows Remote Folder Deletion

Directory Traversal Vulnerability in Xinha 0.96 Allows Remote Folder Deletion

CVE-2017-11723 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Directory traversal vulnerability in plugins/ImageManager/backend.php in Xinha 0.96, as used in Jojo 4.4.0, allows remote attackers to delete any folder via directory traversal sequences in the deld parameter.

Learn more about our Web Application Penetration Testing UK.