Drupal IMCE Module Arbitrary File Deletion Vulnerability

Drupal IMCE Module Arbitrary File Deletion Vulnerability

The Drupal IMCE module is prone to an arbitrary file-deletion vulnerability because the application fails to sufficiently sanitize user-supplied input.

Successfully exploiting this issue allows attackers to delete arbitrary files with the privileges of the targeted webserver process.