| Titel | SSCMS V4.7.0 SSCMS Arbitrary File Deletion |
|---|
| Beschreibung | endpoint accepts user-controlled filePaths and does not enforce a secure canonical-path boundary check.
By supplying traversal input (e.g., ../...), an attacker with admin access can target files outside the intended upload scope.
If isLinkToOriginal=false, it deletes the original file path, enabling arbitrary file deletion.
Affected Code |
|---|
| Quelle | ⚠️ https://www.yuque.com/la12138/pa2fpb/vlyutc51eb7vhwaz?singleDoc |
|---|
| Benutzer | Saul1213 (UID 94577) |
|---|
| Einreichung | 07.03.2026 13:27 (vor 1 Monat) |
|---|
| Moderieren | 21.03.2026 16:17 (14 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 352359 [SSCMS 4.7.0 layerImage Endpoint LayerImageController.Submit.cs filePaths Directory Traversal] |
|---|
| Punkte | 18 |
|---|