| Titolo | Seeyon Zhiyuan OA Web Application System V8.1 SP2 Path Traversal Vulnerability |
|---|
| Descrizione | 1.Vulnerability Name: Path Traversal Vulnerability of Seeyon Zhiyuan OA Web Application System
2.Vulnerability Submitter and Contributor: 蔡超雄(caichaoxiong)
3.Vulnerability Level: Medium.
4.Affected product version : V8.1 SP2
5.Vulnerability Description:
The M3CoreController component of the Seeyon Zhiyuan OA system V8 SP2 Web Application System does not filter user input, resulting in users being able to traverse the directory through ../ and download zip files in any location. |
|---|
| Fonte | ⚠️ https://wx.mail.qq.com/s?k=h3jd6HR4UnUJxQZ0RG |
|---|
| Utente | caichaoxiong (UID 84060) |
|---|
| Sottomissione | 25/04/2025 03:47 (1 Anno fa) |
|---|
| Moderazione | 10/05/2025 07:33 (15 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 308274 [Seeyon Zhiyuan OA Web Application System 8.1 SP2 ZIP File M3CoreController.class download Nome directory traversal] |
|---|
| Punti | 17 |
|---|