Submit #749983: Zentao PMS <=21.7.8 Arbitrary File Deletioninfo

Titel	Zentao PMS <=21.7.8 Arbitrary File Deletion
Beschreibung	Affected Component: backup/control.php::delete() Vulnerability Type: Path Traversal leading to Arbitrary File Deletion Authentication Required: Yes Impact: Arbitrary file deletion on the server filesystem Reporter: ez-lbz
Quelle	⚠️ https://github.com/ez-lbz/ez-lbz.github.io/issues/10
Benutzer	ez-lbz (UID 87033)
Einreichung	01.02.2026 10:56 (vor 3 Monaten)
Moderieren	15.02.2026 17:20 (14 days later)
Status	Akzeptiert
VulDB Eintrag	346160 [ZenTao bis 21.7.8 Backup editor/control.php delete fileName Directory Traversal]
Punkte	17

Do you know our Splunk app?

Download it now for free!