| Título | zhijiantianya ruoyi-vue-pro 2.4.1 Arbitrary file deletion vulnerability --uploadPermanentMaterial |
|---|
| Descripción | There is an arbitrary file deletion vulnerability caused by directory traversal in the material upload interface of ruoyi-vue-pro v2.4.1, as described in the `/admin-api/mp/material/upload-permanent` section. Hackers can exploit this vulnerability to delete files that can be accessed by the programme. |
|---|
| Fuente | ⚠️ https://github.com/uglory-gll/javasec/blob/main/ruoyi-vue-pro.md |
|---|
| Usuario | uglory (UID 82151) |
|---|
| Sumisión | 2025-03-13 06:04 (hace 1 Año) |
|---|
| Moderación | 2025-03-24 15:44 (11 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 300844 [zhijiantianya ruoyi-vue-pro 2.4.1 Material Upload Interface upload-permanent Archivo recorrido de directorios] |
|---|
| Puntos | 17 |
|---|