| Titre | Tsinghua Unigroup Electronic Archives System 3.2.210802(62532) Unrestricted Upload |
|---|
| Description | A critical security vulnerability has been identified in Tsinghua Unigroup Electronic Archives System 3.2.210802 (62532).
Due to improper validation in the file upload mechanism, a remote attacker can upload arbitrary files without authentication.
Successful exploitation may lead to full system compromise, including arbitrary code execution, data tampering, or persistent backdoor deployment.
This vulnerability poses a severe risk to affected deployments and requires immediate remediation. |
|---|
| La source | ⚠️ https://github.com/luoye197-prog/ziguang-fileupload |
|---|
| Utilisateur | lanmeik (UID 95270) |
|---|
| Soumission | 07/02/2026 13:21 (il y a 4 mois) |
|---|
| Modérer | 18/02/2026 14:36 (11 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 346475 [Tsinghua Unigroup Electronic Archives System jusqu’à 3.2.210802(62532) uploadFile.html Fichier élévation de privilèges] |
|---|
| Points | 20 |
|---|