| Titre | Jinan galloping information technology Co., LTD JFlow 2.0.0 Exposure of Access Control List Files to an Unauthorized Control |
|---|
| Description | Gallop JFlow management system Third, vulnerability location /WF/Ath/EntityMutliFile_Load.do |
|---|
| La source | ⚠️ https://github.com/sweatxi/BugHub/blob/main/Jinan%20Gallop%20JFlow%20CMS%20port%20is%20not%20authorized%20to%20cause%20the%20leakage%20of%20database%20attachment%20information.pdf |
|---|
| Utilisateur | hexixi (UID 59932) |
|---|
| Soumission | 11/09/2024 10:01 (il y a 2 ans) |
|---|
| Modérer | 19/09/2024 16:27 (8 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 278153 [Jinan Chicheng Company JFlow 2.0.0 Attachment EntityMutliFile_Load.do AttachmentUploadController oid élévation de privilèges] |
|---|
| Points | 15 |
|---|