A File Deletion vulnerability exists in TinyShop 3.1.1 in the back_list parameter in controllers\admin.php, which could let a malicious user delete any file such as install.lock to reinstall cms.Referenceshttp://tinyrise.com/http://tinyrise.com/down.htmlhttps://imgur.com/dg1DM5Thttps://imgur.com/pA8OWxa
