إرسال #632537: HuangDou UTCMS V9 RCE vulnerability for remote file download in the backgroundالمعلومات

عنوانHuangDou UTCMS V9 RCE vulnerability for remote file download in the background
الوصفIn the update.php page, users can remotely downloading the compressed package and automatically decompressing it and RCE.
المصدر⚠️ https://github.com/August829/Yu/blob/main/20250811_1.md
المستخدم
 Yu Bao (UID 88956)
ارسال12/08/2025 03:50 PM (11 أشهر منذ)
الاعتدال24/08/2025 04:52 PM (12 days later)
الحالةتمت الموافقة
إدخال VulDB321238 [HuangDou UTCMS 9 Config update.php UPDATEURL تجاوز الصلاحيات]
النقاط15

Do you need the next level of professionalism?

Upgrade your account now!