| शीर्षक | flusity-CMS Unrestricted Upload of File with Dangerous Type |
|---|
| विवरण | flusity-CMS is a content management system. There is not enough file filtering on the upload page, so any php file can be uploaded. Webshell can be uploaded to obtain server permissions.
## Affected version:
flusity-CMS
## Vendor:
https://github.com/flusity/flusity-CMS
## Software:
https://github.com/flusity/flusity-CMS
## Vulnerability File:
upload.php |
|---|
| स्रोत | ⚠️ https://github.com/flusity/flusity-CMS/issues/4 |
|---|
| उपयोगकर्ता | zihe (UID 56943) |
|---|
| सबमिशन | 25/10/2023 02:30 PM (3 साल पहले) |
|---|
| संयम | 26/10/2023 08:14 PM (1 day later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 243643 [flusity CMS core/tools/upload.php handleFileUpload uploaded_file अधिकार वृद्धि] |
|---|
| अंक | 18 |
|---|