제출 #636624: https://github.com/yeqifu/carRental carRental 1.0 Memory Corruption정보

제목https://github.com/yeqifu/carRental carRental 1.0 Memory Corruption
설명The car/updateCar.action interface in version 1.0 of carRental has an arbitrary deletion vulnerability. Attackers can delete any files on the server by using the carimg parameter.
원천⚠️ https://github.com/JetpropelledSnake/CVE-File/blob/main/Unrestricted%20deletion%20of%20any%20file.md
사용자
 CoiledMag4 (UID 88961)
제출2025. 08. 18. AM 04:18 (8 개월 ago)
모더레이션2025. 08. 29. AM 08:38 (11 days later)
상태수락
VulDB 항목321858 [yeqifu carRental 까지 3fabb7eae93d209426638863980301d6f99866b3 AppFileUtils.java removeFileByPath carimg 디렉토리 순회]
포인트들15

이전개요다음

Want to stay up to date on a daily basis?

Enable the mail alert feature now!