| タイトル | https://www.ctcms.cn/ CTCMS Content Management System V2.1.2 Arbitrary File Deletion |
|---|
| 説明 | CTCMS contains an arbitrary file deletion vulnerability in the del() function located in ctcms\apps\controllers\admin\Tpl.php. The function improperly sanitizes user input by stripping .. and //, but this can be bypassed using combinations of ./ and ../. An attacker can craft payloads to traverse outside the intended directory and delete arbitrary files on the server, such as critical configuration files (config.php), sensitive data files, or even core system files like install.lock. Deleting these files can cause the website to crash, force a system reinstallation, expose sensitive information, or even lead to complete system compromise, making this a highly critical vulnerability. |
|---|
| ソース | ⚠️ https://github.com/xiaoyangsec/ctcms/blob/main/CTCMS_Arbitrary_File_Deletion_Vulnerability_Authenticated.md |
|---|
| ユーザー | xiaoyang (UID 84496) |
|---|
| 送信 | 2025年04月28日 07:25 (1 年 ago) |
|---|
| モデレーション | 2025年05月10日 17:25 (12 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 308292 [CTCMS Content Management System 2.1.2 File Tpl.php del ファイル ディレクトリトラバーサル] |
|---|
| ポイント | 20 |
|---|