| Titolo | esafenet DLP V1.9.1 RCE |
|---|
| Descrizione | Unauthenticated File Upload Leading to Remote Code Execution (RCE)
The application allows unauthenticated users to upload files via the `/gok4` endpoint. The uploaded files are not properly validated, which can lead to remote code execution (RCE) if a malicious file is uploaded. |
|---|
| Fonte | ⚠️ https://github.com/Rain1er/report/blob/main/CDG/bnhiMg%3D%3D.md |
|---|
| Utente | heihei_XZ (UID 81980) |
|---|
| Sottomissione | 25/02/2025 14:31 (1 Anno fa) |
|---|
| Moderazione | 08/03/2025 15:15 (11 days later) |
|---|
| Stato | Duplicato |
|---|
| Voce VulDB | 296506 [hzmanyun Education and Training System 3.1.1 saveImage File escalationi di privilegi] |
|---|
| Punti | 0 |
|---|