Yeqifu: >> Warehouse Management System >> 1.2 Security Vulnerabilities
The warehouse management system version 1.2 contains an arbitrary file read vulnerability. The endpoint `/file/showImageByPath` does not sanitize user-controlled path parameters. An attacker could exploit directory traversal to read arbitrary files on the server's file system. This could lead to the leakage of sensitive system information.
CVSS Score
7.5
EPSS Score
0.003
Published
2025-12-05