Primary

Context

FeMiner WMS Directory Traversal Vulnerability in databak.php Component

Vulnerability

A directory traversal vulnerability has been identified in FeMiner WMS version 1.0. This vulnerability allows remote attackers to access sensitive information by exploiting the databak.php component. The issue arises from improper handling of file paths, enabling attackers to traverse directories and read arbitrary files, such as the passwd file.

Impact

Exploitation of this vulnerability allows for arbitrary file reading, which could lead to the disclosure of sensitive information stored on the server.

Reproduction

The vulnerability can be reproduced by sending a POST request to the /wms/system/databak.php endpoint. The request must include a 'flag' parameter set to '1' and a 'filename' parameter containing a crafted file path that traverses directories (e.g., '../../../../../../../../etc/passwd'). This will result in the contents of the specified file being returned in the response.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.3

exploitability

6.0

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.3

exploitability

6.0

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

FeMiner WMS Directory Traversal Vulnerability in databak.php Component

Vulnerability

Impact

Reproduction

Affected Products

FeMiner wms

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating