Emlog Pro Arbitrary File Deletion Vulnerability

A vulnerability allowing arbitrary file deletion has been identified in Emlog Pro version 2.5.20. This issue arises in the admin/template.php and admin/plugin.php components, which do not properly validate deletion parameters, enabling directory traversal attacks. Exploiting this vulnerability can disrupt the system's integrity and normal operations by deleting critical files or directories.

Impact

Exploitation of this vulnerability can lead to unauthorized deletion of files and directories, potentially causing disruption to the application's functionality and stability.

Reproduction

The vulnerability can be reproduced by sending a GET request to the admin/template.php or admin/plugin.php files with the action parameter set to 'del'. The deletion payload can include traversal sequences to specify files or directories for deletion. After the request is processed, the targeted files or directories will be removed, demonstrating the vulnerability's impact.