| 标题 | SRMS Student Result Management System 1.0 Path Traversal |
|---|
| 描述 | Improper unlink used in update_system.php, the system use unlink to delete old logo without any check. Attacker can use a path traversal to delete all the file in file system. |
|---|
| 来源 | ⚠️ https://magnificent-dill-351.notion.site/Arbitrary-File-Delete-in-SRMS-1-0-1f4c693918ed80de80b0e7925ddbdadc |
|---|
| 用户 | s0l42 (UID 82389) |
|---|
| 提交 | 2025-05-15 12時03分 (12 月前) |
|---|
| 管理 | 2025-05-17 14時57分 (2 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 309454 [SourceCodester Student Result Management System 1.0 Logo File update_system.php unlink old_logo 目录遍历] |
|---|
| 积分 | 13 |
|---|