Submeter #765787: Tsinghua Unigroup Electronic Archives System 3.2.210802(62532) File and Directory Information Exposureinformação

TítuloTsinghua Unigroup Electronic Archives System 3.2.210802(62532) File and Directory Information Exposure
DescriçãoA remote path traversal vulnerability in Tsinghua Unigroup Electronic Archives System 3.2.210802 (62532) allows unauthenticated attackers to retrieve arbitrary files from the underlying server via manipulation of the path parameter in the /System/Cms/downLoad interface. Exploitation of this vulnerability allows attackers to read arbitrary files on the server, which may expose sensitive configuration files, credentials, or other confidential information.
Fonte⚠️ https://github.com/luoye197-prog/cve-ziguang-filereadnew
Utilizador
 lanmeik (UID 95270)
Submissão23/02/2026 10h29 (há 2 meses)
Moderação07/03/2026 13h17 (12 days later)
EstadoAceite
Entrada VulDB349662 [Tsinghua Unigroup Electronic Archives System 3.2.210802(62532) /System/Cms/downLoad path Travessia de Diretório]
Pontos20

VoltarVisão GeralPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!