Home
CRITICAL: 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:H/SA:H/AU:YDefault status
unaffected
1.0.0-6.0.1
affected
Default status
unaffected
1.0.0-4.4.12
affected
5.0.0-5.1.5
affected
Default status
unaffected
1.0.0-6.3.11
affected
7.0.0-7.1.1
affected
Default status
unaffected
1.0.0-5.6.11
affected
6.0.0-6.1.9
affected
Default status
unaffected
1.0.0-2.8.12
affected
3.0.0-3.1.3
affected
Default status
unaffected
1.0.0-1.2.6
affected
2.0.0-2.1.0
affected
Default status
unaffected
1.0.0
affected
Default status
unaffected
1.0.0-5.0.5
affected
5.1.0-5.2.0
affected
Description
The vulnerability in the Tassos Framework Plugin allows users to delete arbitrary files on the affected sites.
Problem types
CWE-284 Improper Access Control
Product status
1.0.0-6.0.1
1.0.0-4.4.12
5.0.0-5.1.5
1.0.0-6.3.11
7.0.0-7.1.1
1.0.0-5.6.11
6.0.0-6.1.9
1.0.0-2.8.12
3.0.0-3.1.3
1.0.0-1.2.6
2.0.0-2.1.0
1.0.0
1.0.0-5.0.5
5.1.0-5.2.0
Credits
Leandro Vallim
References
tassos.gr