CVE-2022-32199

Description

db_convert.php in ScriptCase through 9.9.008 is vulnerable to Arbitrary File Deletion by an admin via a directory traversal sequence in the file parameter.

Related CPE's

a scriptcase scriptcase ********

References

https://github.com/Toxich4/CVE-2022-32199

ExploitThird Party Advisory

https://www.scriptcase.net/download/

Product

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io