Directory traversal vulnerability in admin.php in LokiCMS 0.3.3 and earlier allows remote attackers to delete arbitrary files via a .. (dot dot) in the delete parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.027
EPSS Ranking 84.1%