Invia #181500: Flash flood Disaster monitoring and early warning system 2.0 service module has arbitrary file upload vulnerabilityinformazioni

TitoloFlash flood Disaster monitoring and early warning system 2.0 service module has arbitrary file upload vulnerability
DescrizioneChengdu Wanjiang Gangli Technology Co., LTD. - There is an unauthorized arbitrary file upload vulnerability in the 2.0 service module of the mountain flood Disaster monitoring and warning system, and the attacker can upload webshell directly to the target server without logging in, which is great harm!Chengdu Wanjiang Gangli Technology Co., LTD. - There is an unauthorized arbitrary file upload vulnerability in the 2.0 service module of the mountain flood Disaster monitoring and warning system, and the attacker can upload webshell directly to the target server without logging in, which is great harm!
Fonte⚠️ https://github.com/yueying638/cve/blob/main/upload.md
Utente
 yueying (UID 50455)
Sottomissione12/07/2023 11:36 (3 anni fa)
Moderazione20/07/2023 10:28 (8 days later)
StatoAccettato
Voce VulDB235072 [Chengdu Flash Flood Disaster Monitoring and Warning System FileHandler.ashx escalationi di privilegi]
Punti20

Interested in the pricing of exploits?

See the underground prices here!