4 matches found
CVE-2024-0989
A vulnerability, which was classified as problematic, has been found in Sichuan Yougou Technology KuERP up to 1.0.4. Affected by this issue is the function delsndb of the file /application/index/controller/Service.php. The manipulation of the argument file leads to path traversal: '../filedir'. T...
Path traversal
A vulnerability, which was classified as problematic, has been found in Sichuan Yougou Technology KuERP up to 1.0.4. Affected by this issue is the function delsndb of the file /application/index/controller/Service.php. The manipulation of the argument file leads to path traversal: '../filedir'. T...
CVE-2024-0989
CVE-2024-0989 affects Sichuan Yougou Technology KuERP up to v1.0.4. The del_sn_db function in /application/index/controller/Service.php processes the file argument leading to path traversal (example '../filedir'). The exploit has been disclosed publicly. Impact per CVSSv3.1: Network, no user inte...
CVE-2024-0989 Sichuan Yougou Technology KuERP Service.php del_sn_db path traversal
A vulnerability, which was classified as problematic, has been found in Sichuan Yougou Technology KuERP up to 1.0.4. Affected by this issue is the function delsndb of the file /application/index/controller/Service.php. The manipulation of the argument file leads to path traversal: '../filedir'. T...