Submeter #754530: https://github.com/megagao/production_ssm production_ssm v1.0 Arbitrary file deletioninformação

Títulohttps://github.com/megagao/production_ssm production_ssm v1.0 Arbitrary file deletion
DescriçãoThe production_ssm system contains an arbitrary file deletion vulnerability.The /file/delete interface of the roduction_ssm system contains an arbitrary file deletion vulnerability.The system does not filter directory traversal characters when detecting file paths, allowing attackers to traverse paths and delete arbitrary files using the "..\" operator.
Fonte⚠️ https://github.com/megagao/production_ssm/issues/37
Utilizador
 Jszdk (UID 95030)
Submissão09/02/2026 08h58 (há 3 meses)
Moderação20/02/2026 15h17 (11 days later)
EstadoAceite
Entrada VulDB347102 [feng_ha_ha/megagao ssm-erp/production_ssm até 4288d53bd35757b27f2d070057aefb2c07bdd097 FileServiceImpl.java deleteFile Travessia de Diretório]
Pontos19

VoltarVisão GeralPróximo

Want to know what is going to be exploited?

We predict KEV entries!