| Title | vendor https://www.lingxing.com/ v2 remote code execution |
|---|
| Description | A critical security vulnerability has been identified in the file upload functionality of the .NET system. This vulnerability allows unauthenticated users to upload arbitrary files, which can lead to remote code execution (RCE) and potentially grant attackers full control over the server. |
|---|
| Source | ⚠️ https://github.com/666lail/report/blob/main/tmp/fileUpload_1.md |
|---|
| User | 207556249 (UID 81808) |
|---|
| Submission | 01/04/2025 16:00 (il y a 3 mois) |
|---|
| Moderation | 14/04/2025 00:14 (12 days later) |
|---|
| Status | Accepté |
|---|
| VulDB Entry | 304592 [Lingxing ERP 2 FileUpload.ashx?method=DoUpload Fichier elévation de privilèges] |
|---|
| Points | 17 |
|---|