| Titel | Jinan galloping information technology Co., LTD JFlow 2.0.0 Exposure of Access Control List Files to an Unauthorized Control |
|---|
| Beschreibung | Gallop JFlow management system Third, vulnerability location /WF/Ath/EntityMutliFile_Load.do |
|---|
| Quelle | ⚠️ https://github.com/sweatxi/BugHub/blob/main/Jinan%20Gallop%20JFlow%20CMS%20port%20is%20not%20authorized%20to%20cause%20the%20leakage%20of%20database%20attachment%20information.pdf |
|---|
| Benutzer | hexixi (UID 59932) |
|---|
| Einreichung | 11.09.2024 10:01 (vor 2 Jahren) |
|---|
| Moderieren | 19.09.2024 16:27 (8 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 278153 [Jinan Chicheng Company JFlow 2.0.0 Attachment EntityMutliFile_Load.do AttachmentUploadController oid erweiterte Rechte] |
|---|
| Punkte | 15 |
|---|