CVE-2026-2863 feng_ha_ha/megagao ssm-erp/production_ssm FileServiceImpl.java deleteFile path traversal

A flaw has been found in fenghaha/megagao ssm-erp and productionssm up to 4288d53bd35757b27f2d070057aefb2c07bdd097. The impacted element is the function deleteFile of the file FileServiceImpl.java. This manipulation causes path traversal. The attack can be initiated remotely. The exploit has been...

ssm-erp和production_ssm 路径遍历漏洞

productionssm is an ERP system developed by MegaGao’s individual developers using Spring+SpringMVC+Mybatis and jQuery EasyUI. ssm-erp is a production management ERP system developed by fenghaha’s individual developers. Both ssm-erp and productionssm have a path traversal vulnerability in versions...

PT-2026-21360

A flaw has been found in feng ha ha/megagao ssm-erp and production ssm up to 4288d53bd35757b27f2d070057aefb2c07bdd097. The impacted element is the function deleteFile of the file FileServiceImpl.java. This manipulation causes path traversal. The attack can be initiated remotely. The exploit has...

EUVD-2020-15519

Malware in sbrugna...

EUVD-2025-26659

Malicious code in bioql PyPI...

ELADMIN 授权问题漏洞

ELADMIN is a backend management system for elunez individual developers. An authorization issue vulnerability exists in ELADMIN version 1.1, which stems from improper authorization of the function deleteFile in the component LocalStorageController...

PT-2025-35853

Name of the Vulnerable Software and Affected Versions: elunez eladmin version 1.1 Description: A security flaw exists in the deleteFile function of the LocalStorageController component, resulting in improper authorization. The issue is remotely exploitable and has been publicly disclosed...

CVE-2025-7628

A vulnerability was found in YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd. It has been classified as critical. This affects the function deleteFile of the file /deleteFile. The manipulation of the argument fileName leads to path traversal. It is possible to...

CVE-2025-7628

A vulnerability was found in YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd. It has been classified as critical. This affects the function deleteFile of the file /deleteFile. The manipulation of the argument fileName leads to path traversal. It is possible to...

CVE-2025-7628 YiJiuSmile kkFileViewOfficeEdit deleteFile path traversal

A vulnerability was found in YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd. It has been classified as critical. This affects the function deleteFile of the file /deleteFile. The manipulation of the argument fileName leads to path traversal. It is possible to...

CVE-2025-7628 YiJiuSmile kkFileViewOfficeEdit deleteFile path traversal

A vulnerability was found in YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd. It has been classified as critical. This affects the function deleteFile of the file /deleteFile. The manipulation of the argument fileName leads to path traversal. It is possible to...

CVE-2025-7628

CVE-2025-7628 affects YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd. The vulnerability is in the deleteFile function at /deleteFile where manipulat ing the fileName parameter enables path traversal. It is described as exploitable remotely and has public exploit di...

PT-2025-29505 · Unknown · Kkfileviewofficeedit

Name of the Vulnerable Software and Affected Versions: YiJiuSmile kkFileViewOfficeEdit versions up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd Description: A critical issue exists in the deleteFile function located at /deleteFile. Manipulation of the fileName argument can lead to path traversal,...

kkFileViewOfficeEdit 路径遍历漏洞

kkFileViewOfficeEdit is a file online preview and online editing software for OFFICE by YiJiuSmile personal developer. A path traversal vulnerability exists in kkFileViewOfficeEdit 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd and prior versions, which stems from a path traversal vulnerability caused ...

PT-2025-28122 · Unknown · Risesoft-Y9 Digital-Infrastructure

Name of the Vulnerable Software and Affected Versions: risesoft-y9 Digital-Infrastructure versions prior to 9.6.8 Description: A critical issue affects the deleteFile function in the file...

CVE-2020-22761

Cross Site Request Forgery CSRF vulnerability in FlatPress 1.1 via the DeleteFile function in flat/admin.php...

CVE-2024-11239

A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This vulnerability affects the function deleteFile of the file /sys/common/import.do?method=deleteFile of the component API Interface. The manipulation of the argument folder leads to path traversal. The attack c...

CVE-2024-11239

A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This vulnerability affects the function deleteFile of the file /sys/common/import.do?method=deleteFile of the component API Interface. The manipulation of the argument folder leads to path traversal. The attack c...

Landray EKP 路径遍历漏洞

Landray EKP is an office automation solution from China's Landray Corporation that enables companies to easily model and manage their business. A path traversal vulnerability exists in Landray EKP V16.0 and earlier versions, which stems from the parameter folder in the file...

PT-2024-16848 · Landray · Landray Ekp

Name of the Vulnerable Software and Affected Versions: Landray EKP versions up to 16.0 Description: A critical vulnerability has been found in Landray EKP, affecting the deleteFile function of the file /sys/common/import.do?method=deleteFile in the API Interface component. The manipulation of the...