Warehouse Management System Hit by Critical File Deletion Vulnerability: CVE-2025-65879

Overview

A critical security vulnerability, identified as CVE-2025-65879, has been discovered in Warehouse Management System version 1.2. This vulnerability allows an authenticated attacker to delete arbitrary files on the server. The root cause lies in insufficient input validation on the /goods/deleteGoods endpoint, specifically concerning the goodsimg parameter.

Technical Details

The vulnerability stems from the lack of proper sanitization of the goodsimg parameter passed to the /goods/deleteGoods endpoint. An authenticated user can manipulate this parameter to include directory traversal sequences (e.g., ../). The application then directly concatenates the user-controlled goodsimg value with the server’s UPLOAD_PATH and passes the resulting path to the File.delete() function without any validation. This allows an attacker to navigate the file system and delete any file accessible to the application’s user.

The code snippet demonstrating the vulnerable behavior looks similar to this (for illustrative purposes):

        String filePath = UPLOAD_PATH + goodsimg;
        File fileToDelete = new File(filePath);
        fileToDelete.delete();
        

As you can see, the absence of input validation on `goodsimg` and secure path handling makes the system prone to malicious attacks.

CVSS Analysis

Currently, a CVSS score has not been assigned to CVE-2025-65879. However, given the ability to delete arbitrary files, this vulnerability is likely to be categorized as high severity once a score is calculated. The ease of exploitation (requires only authentication) further contributes to its potential risk.

Possible Impact

The exploitation of CVE-2025-65879 can have severe consequences, including:

• Data Loss: Attackers can delete critical system files, application data, or backups, leading to data loss and system instability.
• Denial of Service: Deletion of essential files can cause the application or even the entire server to become unavailable.
• Privilege Escalation: In some scenarios, deleting specific configuration files could potentially lead to privilege escalation. (less likely but possible depending on the system configuration)

Mitigation and Patch Steps

To mitigate the risk posed by CVE-2025-65879, the following steps are recommended:

• Input Validation: Implement strict input validation on the goodsimg parameter. Specifically, sanitize or reject any input containing directory traversal sequences (e.g., ../) or absolute paths.
• Path Sanitization: Before passing the file path to File.delete(), use a library function to canonicalize the path and ensure that it remains within the intended UPLOAD_PATH directory.
• Least Privilege: Ensure that the application user has the minimum necessary permissions to access and delete files.
• Patch Application: Apply the official patch released by the vendor (if available). Check the vendor’s website for updates and security advisories.
• Web Application Firewall (WAF): Implement a WAF rule to detect and block requests containing directory traversal attempts to the vulnerable endpoint.