Submit #393374: Chengdu Guangda Network Technology BeikeShop <=v1.5.5 Arbitrary File Deletioninfo

TitelChengdu Guangda Network Technology BeikeShop <=v1.5.5 Arbitrary File Deletion
BeschreibungWhen sending a DELETE request action to the admin/file_manager/files interface, an attacker can construct a special POC to implement an arbitrary file deletion attack.
Quelle⚠️ https://github.com/DeepMountains/zzz/blob/main/CVE4-1.md
Benutzer
 wanglun (UID 73616)
Einreichung18.08.2024 09:58 (vor 2 Jahren)
Moderieren26.08.2024 09:22 (8 days later)
StatusAkzeptiert
VulDB Eintrag275761 [Chengdu Everbrite Network Technology BeikeShop bis 1.5.5 files destroyFiles Directory Traversal]
Punkte16

ZurückÜbersichtWeiter

Do you want to use VulDB in your project?

Use the official API to access entries easily!