Arbitrary File Delete Vulnerability in Fiyo CMS v2.0.7

Arbitrary File Delete Vulnerability in Fiyo CMS v2.0.7

CVE-2017-8853 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:P

Fiyo CMS v2.0.7 has an arbitrary file delete vulnerability in dapur/apps/app_config/controller/backuper.php via directory traversal in the file parameter during an act=db action.

Learn more about our Cms Pen Testing.