Hiki Session ID File Deletion Vulnerability

Hiki Session ID File Deletion Vulnerability

Hiki is prone to a vulnerability that allows an attacker to delete arbitrary files because of an error in the way it deletes files when a user logs out.

An attacker can exploit this vulnerability to delete arbitrary files in the context of the affected software, which can allow the attacker to cause significant damage to an installation, potentially denying service to legitimate users.