| Título | SSCMS V4.7.0 SSCMS Arbitrary File Deletion |
|---|
| Descripción | endpoint accepts user-controlled filePaths and does not enforce a secure canonical-path boundary check.
By supplying traversal input (e.g., ../...), an attacker with admin access can target files outside the intended upload scope.
If isLinkToOriginal=false, it deletes the original file path, enabling arbitrary file deletion.
Affected Code |
|---|
| Fuente | ⚠️ https://www.yuque.com/la12138/pa2fpb/vlyutc51eb7vhwaz?singleDoc |
|---|
| Usuario | Saul1213 (UID 94577) |
|---|
| Sumisión | 2026-03-07 13:27 (hace 2 meses) |
|---|
| Moderación | 2026-03-21 16:17 (14 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 352359 [SSCMS 4.7.0 layerImage Endpoint LayerImageController.Submit.cs filePaths recorrido de directorios] |
|---|
| Puntos | 18 |
|---|