Submit #393375: Chengdu Guangda Network Technology BeikeShop <=v1.5.5 FileUploadinfo

TitelChengdu Guangda Network Technology BeikeShop <=v1.5.5 FileUpload
BeschreibungIn the FileManagerController.php controller, the rename method can modify the name of the file, but due to improper filtering, attackers can directly modify the file suffix to php file.
Quelle⚠️ https://github.com/DeepMountains/zzz/blob/main/CVE4-2.md
Benutzer
 wanglun (UID 73616)
Einreichung18.08.2024 09:59 (vor 2 Jahren)
Moderieren26.08.2024 09:22 (8 days later)
StatusAkzeptiert
VulDB Eintrag275762 [Chengdu Everbrite Network Technology BeikeShop bis 1.5.5 FileManagerController.php rename new_name erweiterte Rechte]
Punkte15

ZurückÜbersichtWeiter

Want to know what is going to be exploited?

We predict KEV entries!