Enviar #754557: https://github.com/megagao/production_ssm production_ssm v1.0 Arbitrary file deletion vulnerabilityinformación

Títulohttps://github.com/megagao/production_ssm production_ssm v1.0 Arbitrary file deletion vulnerability
DescripciónThe production_ssm system contains an arbitrary file deletion vulnerability.The /pic/delete interface of the roduction_ssm system contains an arbitrary file deletion vulnerability.The system does not filter directory traversal characters when detecting file paths, allowing attackers to traverse paths and delete arbitrary files using the "..\" operator.
Fuente⚠️ https://github.com/megagao/production_ssm/issues/38
Usuario
 Jszdk (UID 95030)
Sumisión2026-02-09 09:31 (hace 3 meses)
Moderación2026-02-20 15:17 (11 days later)
EstadoAceptado
Entrada de VulDB347103 [feng_ha_ha/megagao ssm-erp/production_ssm hasta 4288d53bd35757b27f2d070057aefb2c07bdd097 PictureController.java pictureDelete picName recorrido de directorios]
Puntos19

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!