High severity7.5NVD Advisory· Published Jul 20, 2017· Updated Jun 17, 2026
CVE-2017-11500
CVE-2017-11500
Description
A directory traversal vulnerability exists in MetInfo 5.3.17. A remote attacker can use ..\ to delete any .zip file via the filenames parameter to /admin/system/database/filedown.php.
Affected products
3Patches
Vulnerability mechanics
References
1- blackwolfsec.cc/2017/07/20/Metinfo-directory-traversal-bypass/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.