| Title | 上海灵当信息科技有限公司 Lingdang CRM <= 8.6.4.3 arbitrary file upload |
|---|
| Description | Lingdang CRM is an intelligent customer relationship management tool specifically designed for small and medium-sized enterprises. It is developed and operated by Shanghai Lingdang Information Technology Co., Ltd. It is widely used in various industries including finance, education, healthcare, IT services, and real estate. Lingdang CRM helps businesses meet their customer personalization management needs and enhances their competitiveness. Whether it's about acquiring new customers, maintaining existing ones, or managing the sales process and service management, Lingdang CRM provides comprehensive and efficient solutions.
LingDang CRM versions x.x.x.x and earlier are affected by an arbitrary file upload vulnerability, which occurs at /crm/wechatSession/index.php. This vulnerability can be exploited without requiring any special permissions. |
|---|
| Source | ⚠️ https://wiki.shikangsi.com/post/share/8c9422c2-ecad-4471-97a2-6f8035a2ddf5 |
|---|
| User | XingYue_Mstir (UID 72225) |
|---|
| Submission | 11/04/2024 04:14 AM (1 Year ago) |
|---|
| Moderation | 11/12/2024 07:45 AM (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 283970 [上海灵当信息科技有限公司 Lingdang CRM up to 8.6.4.3 index.php?msgid=1&operation=upload File unrestricted upload] |
|---|
| Points | 20 |
|---|