| عنوان | Fujian Kelixun Communication Co., Ltd Command and dispatch management platform v1.0 Command Injection |
|---|
| الوصف | A command injection vulnerability was found in the "/app/fax/fax_view.php" file of the "Command and Dispatch Management Platform" project. The cause of this vulnerability is that the attacker injected malicious code from the parameter "fax_file" and directly executed the system command without proper cleaning or verification. This allows the attacker to directly control the target server, resulting in the fall of the attacked server. |
|---|
| المصدر | ⚠️ https://github.com/byxs0x0/SQL/issues/2 |
|---|
| المستخدم | wanglun (UID 73616) |
|---|
| ارسال | 02/05/2025 04:55 AM (1 سنة منذ) |
|---|
| الاعتدال | 23/05/2025 08:26 AM (21 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 310083 [Fujian Kelixun 1.0 Filename /app/fax/fax_view.php fax_file تجاوز الصلاحيات] |
|---|
| النقاط | 20 |
|---|