Submit #458853: cjbi wetech-cms BackupFileUtil.java name 1 Path Traversal: '../filedir'info

Titelcjbi wetech-cms BackupFileUtil.java name 1 Path Traversal: '../filedir'
BeschreibungA vulnerability has been identified in Wetech-CMS that has been classified as Medium Risk. This affects the backup section in the file BackupFileUtil.java. Control of the parameter name will cause directory traversal, causing database backups to be leaked.
Quelle⚠️ https://github.com/hadagaga/vuln/blob/master/wetech-cms/Catalog_penetration/Catalog_penetration.md
Benutzer
 hadagaga (UID 78419)
Einreichung08.12.2024 09:33 (vor 2 Jahren)
Moderieren11.12.2024 13:34 (3 days later)
StatusAkzeptiert
VulDB Eintrag287864 [cjbi wetech-cms 1.0/1.1/1.2 Database Backup BackupFileUtil.java backup Name Information Disclosure]
Punkte17

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!