| عنوان | go-fastdfs Arbitrary file upload vulnerability |
|---|
| الوصف | go-fastdfs is a distributed file system based on the http protocol. It is based on the design concept of avenues to simplicity. All simple designs make its operation and maintenance and expansion easier. It has high performance, high reliability, no center, Maintenance-free and other advantages. There is an arbitrary file upload vulnerability in go-fastdfs version 1.4.3 and before. Unauthenticated attackers can directly upload arbitrary files to the system to achieve the purpose of remotely executing commands.
|
|---|
| المصدر | ⚠️ https://github.com/yangyanglo/ForCVE/blob/main/2023-0x05.md |
|---|
| المستخدم | yangyanglo (UID 43465) |
|---|
| ارسال | 22/03/2023 06:03 PM (3 سنوات منذ) |
|---|
| الاعتدال | 02/04/2023 09:50 AM (11 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 224768 [sjqzhang go-fastdfs حتى 1.4.3 File Upload /group1/uploa upload تنفيذ التعليمات البرمجية عن بُعد] |
|---|
| النقاط | 20 |
|---|