CVE-2021-36701

Name of the Vulnerable Software and Affected Versions htmly version 2.8.1

Description The issue allows a remote attacker to delete arbitrary known files on the local host when deleting backup files, due to an Arbitrary File Deletion vulnerability.

Recommendations For htmly version 2.8.1, consider restricting access to the backup file deletion functionality until a fix is available. As a temporary workaround, avoid using the delete backup files feature to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.