Enviar #519691: zhijiantianya ruoyi-vue-pro 2.4.1 Arbitrary file deletion vulnerability --uploadPermanentMaterialinformación

Títulozhijiantianya ruoyi-vue-pro 2.4.1 Arbitrary file deletion vulnerability --uploadPermanentMaterial
DescripciónThere is an arbitrary file deletion vulnerability caused by directory traversal in the material upload interface of ruoyi-vue-pro v2.4.1, as described in the `/admin-api/mp/material/upload-permanent` section. Hackers can exploit this vulnerability to delete files that can be accessed by the programme.
Fuente⚠️ https://github.com/uglory-gll/javasec/blob/main/ruoyi-vue-pro.md
Usuario
 uglory (UID 82151)
Sumisión2025-03-13 06:04 (hace 1 Año)
Moderación2025-03-24 15:44 (11 days later)
EstadoAceptado
Entrada de VulDB300844 [zhijiantianya ruoyi-vue-pro 2.4.1 Material Upload Interface upload-permanent Archivo recorrido de directorios]
Puntos17

Do you want to use VulDB in your project?

Use the official API to access entries easily!