{"uuid": "ec162928-0569-40da-a017-266f30f9a9a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-29555", "type": "seen", "source": "https://t.me/arpsyndicate/4869", "content": "#ExploitObserverAlert\n\nCVE-2020-29555\n\nDESCRIPTION: Exploit Observer has 10 entries in 3 file formats related to CVE-2020-29555. The BackupDelete functionality in Grav CMS through 1.7.0-rc.17 allows an authenticated attacker to delete arbitrary files on the underlying server by exploiting a path-traversal technique. (This vulnerability can also be exploited by an unauthenticated attacker due to a lack of CSRF protection.)\n\nFIRST-EPSS: 0.000810000\nNVD-IS: 5.2\nNVD-ES: 2.8\nARPS-PRIORITY: 0.7616317", "creation_timestamp": "2024-04-25T21:30:55.000000Z"}