Primary

Context

Liweiyi ChestnutCMS Path Traversal Vulnerability in Download Function

Vulnerability

A path traversal vulnerability has been identified in Liweiyi ChestnutCMS versions through 1.5.8. The issue arises in the 'resourceDownload' function within the '/dev-api/common/download' file. By manipulating the 'path' argument, it is possible to traverse directories and access arbitrary files. This vulnerability requires authentication to exploit but can be executed remotely.

Impact

Exploitation of this vulnerability allows authenticated users to read arbitrary files on the server, potentially leading to the disclosure of sensitive information.

Reproduction

To reproduce this vulnerability, an authenticated user can send a request to the '/dev-api/common/download' endpoint, including a crafted 'path' argument that traverses directories. The request will bypass normal file access restrictions and allow the user to read files from the server's file system.

Added: Nov 10, 2025, 1:17 AM

Updated: Nov 10, 2025, 1:17 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.3

exploitability

6.6

remediation

0.0

relevance

0.9

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.3

exploitability

6.6

remediation

0.0

relevance

0.9

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Liweiyi ChestnutCMS Path Traversal Vulnerability in Download Function

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating