Submeter #566498: https://www.ctcms.cn/ CTCMS Content Management System V2.1.2 Arbitrary File Deletioninformação

Títulohttps://www.ctcms.cn/ CTCMS Content Management System V2.1.2 Arbitrary File Deletion
DescriçãoCTCMS contains an arbitrary file deletion vulnerability in the del() function located in ctcms\apps\controllers\admin\Tpl.php. The function improperly sanitizes user input by stripping .. and //, but this can be bypassed using combinations of ./ and ../. An attacker can craft payloads to traverse outside the intended directory and delete arbitrary files on the server, such as critical configuration files (config.php), sensitive data files, or even core system files like install.lock. Deleting these files can cause the website to crash, force a system reinstallation, expose sensitive information, or even lead to complete system compromise, making this a highly critical vulnerability.
Fonte⚠️ https://github.com/xiaoyangsec/ctcms/blob/main/CTCMS_Arbitrary_File_Deletion_Vulnerability_Authenticated.md
Utilizador
 xiaoyang (UID 84496)
Submissão28/04/2025 07h25 (há 1 Ano)
Moderação10/05/2025 17h25 (12 days later)
EstadoAceite
Entrada VulDB308292 [CTCMS Content Management System 2.1.2 File Tpl.php del Ficheiro Travessia de Diretório]
Pontos20

Do you want to use VulDB in your project?

Use the official API to access entries easily!