exploitDog

CVE-2020-37080

Опубликовано: 03 фев. 2026

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

webTareas 2.0.p8 contains a file deletion vulnerability in the print_layout.php administration component that allows authenticated attackers to delete arbitrary files. Attackers can exploit the vulnerability by manipulating the 'atttmp1' parameter to specify and delete files on the server through an unauthenticated file deletion mechanism.

Ссылки

https://sourceforge.net/projects/webtareas/
https://www.exploit-db.com/exploits/48430
https://www.vulncheck.com/advisories/webtareas-p-arbitrary-file-deletion

EPSS

Процентиль: 24%

0.00326

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-73

Связанные уязвимости

GHSA-c4p8-934f-4gvh

CVSS3: 9.8

github

5 месяцев назад

webTareas 2.0.p8 contains a file deletion vulnerability in the print_layout.php administration component that allows authenticated attackers to delete arbitrary files. Attackers can exploit the vulnerability by manipulating the 'atttmp1' parameter to specify and delete files on the server through an unauthenticated file deletion mechanism.

EPSS

Процентиль: 24%

0.00326

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-73