Critical severity9.8NVD Advisory· Published Feb 3, 2026· Updated Apr 15, 2026

CVE-2020-37080

Description

webTareas 2.0.p8 contains a file deletion vulnerability in the print_layout.php administration component that allows authenticated attackers to delete arbitrary files. Attackers can exploit the vulnerability by manipulating the 'atttmp1' parameter to specify and delete files on the server through an unauthenticated file deletion mechanism.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sourceforge.net/projects/webtareas/nvd
www.exploit-db.com/exploits/48430nvd
www.vulncheck.com/advisories/webtareas-p-arbitrary-file-deletionnvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000