Enviar #181500: Flash flood Disaster monitoring and early warning system 2.0 service module has arbitrary file upload vulnerabilityinformación

TítuloFlash flood Disaster monitoring and early warning system 2.0 service module has arbitrary file upload vulnerability
DescripciónChengdu Wanjiang Gangli Technology Co., LTD. - There is an unauthorized arbitrary file upload vulnerability in the 2.0 service module of the mountain flood Disaster monitoring and warning system, and the attacker can upload webshell directly to the target server without logging in, which is great harm!Chengdu Wanjiang Gangli Technology Co., LTD. - There is an unauthorized arbitrary file upload vulnerability in the 2.0 service module of the mountain flood Disaster monitoring and warning system, and the attacker can upload webshell directly to the target server without logging in, which is great harm!
Fuente⚠️ https://github.com/yueying638/cve/blob/main/upload.md
Usuario
 yueying (UID 50455)
Sumisión2023-07-12 11:36 (hace 3 años)
Moderación2023-07-20 10:28 (8 days later)
EstadoAceptado
Entrada de VulDB235072 [Chengdu Flash Flood Disaster Monitoring and Warning System FileHandler.ashx escalada de privilegios]
Puntos20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!