提交 #749985: Zentao PMS <=21.7.8 Arbitrary File Deletion
| 标题 | Zentao PMS <=21.7.8 Arbitrary File Deletion |
|---|---|
| 描述 | Affected Component: editor/control.php::delete() Vulnerability Type: Path Traversal leading to Arbitrary File Deletion Authentication Required: Yes Impact: Arbitrary file deletion on the server filesystem Reporter: ez-lbz |
| 来源 | ⚠️ https:/ |
| 用户 | ez-lbz (UID 87033) |
| 提交 | 2026-02-01 11時01分 (3 月前) |
| 管理 | 2026-02-15 17時20分 (14 days later) |
| 状态 | 已接受 |
| VulDB条目 | 346161 [ZenTao 直到 21.7.8 Editor editor/control.php delete filePath 目录遍历] |
| 积分 | 17 |