Enviar #521169: Vulnerabilities in the dating platform. windows 4.0 File upload vulnerabilityinformación

TítuloVulnerabilities in the dating platform. windows 4.0 File upload vulnerability
DescripciónCode auditing reveals that the following code receives the data parameter through the input function. The type of the data parameter is an array, and then it calls the base64image function for processing. $res = base64Image($v,"uploads/".date("Y-m-d")."/"); if (preg_match('/^(data:\s*image\/(\w+);base64,)/',$imgBase64,$res)) if (file_put_contents($new_file,base64_decode(str_replace($res[1],'', $imgBase64)))) After encoding the verification code with Base64, upload it. https://www.jianshu.com/p/f8ca5e3cd889
Fuente⚠️ https://www.jianshu.com/p/f8ca5e3cd889
Usuario
 leizi (UID 82832)
Sumisión2025-03-16 07:46 (hace 1 Año)
Moderación2025-03-22 14:45 (6 days later)
EstadoAceptado
Entrada de VulDB300688 [Yue Lao Blind Box 月老盲盒 hasta 4.0 Upload.php base64image data escalada de privilegios]
Puntos20

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!