CVE-2021-37764

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-37764

Import Source

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-37764

Published

2022-06-16T21:15:07.983Z

Modified

2025-11-14T12:11:15.142732Z

Severity

8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H CVSS Calculator

Summary

[none]

Details

Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/manufacturers.php.

References

Affected packages

Type: GIT
Repo: https://github.com/xos-shop/xos_shop_system
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

a8c7c081c97c038aad8b43b66ceb6c8e7a88c403

v1.0.1

v1.0.2

v1.0.3

v1.0.4

v1.0.5

v1.0.6

v1.0.7

v1.0.8

v1.0.9

v1.0_rc7s

v1.0_rc7t

v1.0_rc7u

v1.0_rc7v

v1.0_rc7w

v1.0_rc7x

v1.0_rc7y

v1.0_rc7z

v1.0_rc8

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-37764.json"