| Title | vendor https://www.lingxing.com/ v2 remote code execution |
|---|
| Description | A critical security vulnerability has been identified in the file upload functionality of the .NET system. This vulnerability allows unauthenticated users to upload arbitrary files, which can lead to remote code execution (RCE) and potentially grant attackers full control over the server. |
|---|
| Source | ⚠️ https://github.com/666lail/report/blob/main/tmp/fileUpload_1.md |
|---|
| User | 207556249 (UID 81808) |
|---|
| Submission | 04/01/2025 04:00 PM (2 months ago) |
|---|
| Moderation | 04/14/2025 12:14 AM (12 days later) |
|---|
| Status | Accepted |
|---|
| VulDB Entry | 304592 [Lingxing ERP 2 FileUpload.ashx?method=DoUpload File unrestricted upload] |
|---|
| Points | 17 |
|---|