Arbitrary File Deletion Vulnerability in htmly v2.7.5

Arbitrary File Deletion Vulnerability in htmly v2.7.5

CVE-2020-23766 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

An arbitrary file deletion vulnerability was discovered on htmly v2.7.5 which allows remote attackers to use any absolute path to delete any file in the server should they gain Administrator privileges.

Learn more about our Cis Benchmark Audit For Server Software.