提出 #181500: Flash flood Disaster monitoring and early warning system 2.0 service module has arbitrary file upload vulnerability情報

タイトルFlash flood Disaster monitoring and early warning system 2.0 service module has arbitrary file upload vulnerability
説明Chengdu Wanjiang Gangli Technology Co., LTD. - There is an unauthorized arbitrary file upload vulnerability in the 2.0 service module of the mountain flood Disaster monitoring and warning system, and the attacker can upload webshell directly to the target server without logging in, which is great harm!Chengdu Wanjiang Gangli Technology Co., LTD. - There is an unauthorized arbitrary file upload vulnerability in the 2.0 service module of the mountain flood Disaster monitoring and warning system, and the attacker can upload webshell directly to the target server without logging in, which is great harm!
ソース⚠️ https://github.com/yueying638/cve/blob/main/upload.md
ユーザー
 yueying (UID 50455)
送信2023年07月12日 11:36 (3 年 ago)
モデレーション2023年07月20日 10:28 (8 days later)
ステータス承諾済み
VulDBエントリ235072 [Chengdu Flash Flood Disaster Monitoring and Warning System FileHandler.ashx 特権昇格]
ポイント20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!