| Título | code-projects Faculty Management System 1.0 Path Traversal: '.../...//' |
|---|
| Descrição | During the security review of "Faculty Management System", discovered a critical Unauthorized Path Traversal vulnerability in the "examples.php" file. This vulnerability stems from insufficient user input validation of the 'src' parameter, allowing attackers to inject malicious path file. Therefore, attackers can gain unauthorized access to Operation System File system, access sensitive information. Immediate remedial measures are needed to ensure system security and protect data integrity. |
|---|
| Fonte | ⚠️ https://github.com/xiaoliyu-1/Faculty-Management-System-examples.php-v.1.0-Path-Traversal/blob/main/report.md |
|---|
| Utilizador | xiaoliyu (UID 90318) |
|---|
| Submissão | 18/09/2025 09h05 (há 10 meses) |
|---|
| Moderação | 26/09/2025 10h39 (8 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 325970 [DataTables até 1.10.13 examples.php src Travessia de Diretório] |
|---|
| Pontos | 20 |
|---|