जमा करें #516292: www.digiwin.com digiwin ERP system v5.1.3 Unauthenticated File Upload Leading to Remote Code Executionजानकारी

शीर्षकwww.digiwin.com digiwin ERP system v5.1.3 Unauthenticated File Upload Leading to Remote Code Execution
विवरणA critical vulnerability has been identified in the Digiwin ERP system, specifically in the file upload functionality of the DoWebUpload method. This vulnerability allows unauthenticated users to upload arbitrary files, potentially leading to remote code execution and complete server compromise.
स्रोत⚠️ https://github.com/Rain1er/report/blob/main/THNlcnBf/RCE_4.md
उपयोगकर्ता
 XU NIE (UID 82414)
सबमिशन07/03/2025 04:33 PM (1 वर्ष पहले)
संयम24/03/2025 12:19 PM (17 days later)
स्थितिप्रतिलिपि
VulDB प्रविष्टि300726 [Digiwin ERP 5.1 /Api/FileUploadApi.ashx DoUpload/DoWebUpload Arquivo अधिकार वृद्धि]
अंक0

Might our Artificial Intelligence support you?

Check our Alexa App!