| Titel | Gatship Web Module >20-12-2018 - Arbitrary File Upload [CORRECTED] |
|---|
| Beschreibung | Gatship Web Module >20-12-2018 suffers from a vulnerability within the "Documents" area which allows authenticated attackers to upload any file type to the server. This vulnerability is related to "uploadDocFile".
This issue has been fixed in the latest version and was discovered by Gionathan Reale |
|---|
| Quelle | ⚠️ http://www.gatship.com/ |
|---|
| Benutzer | GionathanReale (UID 2768) |
|---|
| Einreichung | 08.04.2019 09:00 (vor 7 Jahren) |
|---|
| Moderieren | 09.04.2019 08:36 (24 hours later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 133141 [GAT-Ship Web Module bis 1.39 File Upload erweiterte Rechte] |
|---|
| Punkte | 14 |
|---|