Enviar #632535: YiFang CMS 2.0.5 Unrestricted Uploadinformación

TítuloYiFang CMS 2.0.5 Unrestricted Upload
DescripciónThe core code of the app/utils/base/plugin/P_file.php vulnerability is located in the mergeMultipartUpload() method in the above file. The uploaded file name is determined by the suffixes in md5value and name. Both of these are controllable, resulting in any file upload.
Fuente⚠️ https://github.com/August829/Yu/blob/main/20250811_3.md
Usuario
 Yu Bao (UID 88956)
Sumisión2025-08-12 15:46 (hace 11 meses)
Moderación2025-08-24 16:47 (12 days later)
EstadoAceptado
Entrada de VulDB321236 [YiFang CMS hasta 2.0.5 P_file.php mergeMultipartUpload Archivo escalada de privilegios]
Puntos18

Do you need the next level of professionalism?

Upgrade your account now!