| शीर्षक | sims Latest Unauthorized Arbitrary File Upload Vulnerability |
|---|
| विवरण | Rawchen/sims has an unauthorized arbitrary file upload vulnerability. This vulnerability is due to the fact that the UploadServlet route of sims-master/src/web/servlet/file/UploadServlet.java does not do permission management, and the file names entered by the user are not strictly filtered, resulting in the attacker to bypass the filtering and deploy backdoors, WebShell and other malicious programs on the server, thus realizing remote code execution, server control, further stealing sensitive data or disrupting the normal operation of the business system. |
|---|
| स्रोत | ⚠️ https://github.com/yingxiujie/cve/issues/1 |
|---|
| उपयोगकर्ता | yingxiujie (UID 96521) |
|---|
| सबमिशन | 06/04/2026 06:55 AM (22 दिन पहले) |
|---|
| संयम | 25/04/2026 04:05 PM (19 days later) |
|---|
| स्थिति | प्रतिलिपि |
|---|
| VulDB प्रविष्टि | 205147 [Sims 1.0 /uploadServlet अधिकार वृद्धि] |
|---|
| अंक | 0 |
|---|