Full title: BlackNET 3.7.0.0 Missing Authentication / File Deletion / Traversal Exploit Category: web applications Platform: php BlackNET version 3.7.0.0 appears to allow unauthenticated access to modify data and suffers from arbitrary file deletion and directory traversal vulnerabilities while authenticated. # 0day.today @ http://0day.today/