Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/12/09 12:11 a.m.6 views

CVE-2025-65879

Warehouse Management System 1.2 contains an authenticated arbitrary file deletion vulnerability. The /goods/deleteGoods endpoint accepts a user-controlled goodsimg parameter, which is directly concatenated with the server's UPLOADPATH and passed to File.delete without validation. A remote...

8.1CVSS7AI score0.00693EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/12/05 12:0 a.m.26 views

CVE-2025-65879

Warehouse Management System 1.2 contains an authenticated arbitrary file deletion vulnerability. The /goods/deleteGoods endpoint accepts a user-controlled goodsimg parameter, which is directly concatenated with the server's UPLOADPATH and passed to File.delete without validation. A remote...

0.00693EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/12/05 12:0 a.m.8 views

PT-2025-49258

Name of the Vulnerable Software and Affected Versions Warehouse Management System version 1.2 Description The software contains an authenticated arbitrary file deletion issue. The /goods/deleteGoods API endpoint accepts a user-controlled goodsimg parameter. This parameter is directly concatenated...

8.1CVSS6.7AI score0.00693EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/12/05 12:0 a.m.4 views

CVE-2025-65879

Warehouse Management System 1.2 contains an authenticated arbitrary file deletion vulnerability. The /goods/deleteGoods endpoint accepts a user-controlled goodsimg parameter, which is directly concatenated with the server's UPLOADPATH and passed to File.delete without validation. A remote...

6.6AI score0.00693EPSS
Exploits1References1
Rows per page
Query Builder