| 제목 | SourceCodester Modern Image Gallery App v1.0 Path Traversal |
|---|
| 설명 | Path traversal (CWE-22) in SourceCodester Modern Image Gallery App v1.0 delete.php allows unauthenticated attackers to delete arbitrary files. The filename POST param is used directly: 'images/' . $_POST['filename'] . unlink() without validation.
PoC: curl -X POST http://localhost/delete.php -d "id=1" -d "filename=../config.php" deletes config.php ( HTTP 500) , full DoS.
CVSS: 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H). Details in linked Gist. |
|---|
| 원천 | ⚠️ https://gist.github.com/hackusman/e618b915514ed24b9333c72152bb7218 |
|---|
| 사용자 | hackus_man (UID 95738) |
|---|
| 제출 | 2026. 02. 22. PM 05:05 (2 개월 ago) |
|---|
| 모더레이션 | 2026. 03. 07. AM 09:37 (13 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 349641 [SourceCodester Modern Image Gallery App 1.0 /delete.php filename 디렉토리 순회] |
|---|
| 포인트들 | 20 |
|---|