CVE-2020-1903812.07.2021, 17:15File Deletion vulnerability in Halo 0.4.3 via delBackup.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST9.1 CRITICALNETWORKLOWNONECVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HmitreCNA------CVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 48%VendorProductVersionhalohalo0.4.3𝑥= Vulnerable software versionsKnown Exploits!https://github.com/halo-dev/halo/issues/136https://github.com/halo-dev/halo/issues/136Common Weakness EnumerationCWE-862 - Missing AuthorizationThe software does not perform an authorization check when an actor attempts to access a resource or perform an action.Referenceshttps://cwe.mitre.org/data/definitions/23.htmlhttps://github.com/halo-dev/halo/issues/136https://cwe.mitre.org/data/definitions/23.htmlhttps://github.com/halo-dev/halo/issues/136