CVE-2019-16132

An issue was discovered in OKLite v1.2.25. framework/admin/tpl_control.php allows remote attackers to delete arbitrary files via a title directory-traversal pathname followed by a crafted substring. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt