| 제목 | https://www.ctcms.cn/ CTCMS Content Management System V2.1.2 Arbitrary File Deletion |
|---|
| 설명 | CTCMS contains an arbitrary file deletion vulnerability in the del() function located in ctcms\apps\controllers\admin\Tpl.php. The function improperly sanitizes user input by stripping .. and //, but this can be bypassed using combinations of ./ and ../. An attacker can craft payloads to traverse outside the intended directory and delete arbitrary files on the server, such as critical configuration files (config.php), sensitive data files, or even core system files like install.lock. Deleting these files can cause the website to crash, force a system reinstallation, expose sensitive information, or even lead to complete system compromise, making this a highly critical vulnerability. |
|---|
| 원천 | ⚠️ https://github.com/xiaoyangsec/ctcms/blob/main/CTCMS_Arbitrary_File_Deletion_Vulnerability_Authenticated.md |
|---|
| 사용자 | xiaoyang (UID 84496) |
|---|
| 제출 | 2025. 04. 28. AM 07:25 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 05. 10. PM 05:25 (12 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 308292 [CTCMS Content Management System 2.1.2 File Tpl.php del 파일 디렉토리 순회] |
|---|
| 포인트들 | 20 |
|---|