提出 #406225: Jinan galloping information technology Co., LTD JFlow 2.0.0 Exposure of Access Control List Files to an Unauthorized Control情報

タイトルJinan galloping information technology Co., LTD JFlow 2.0.0 Exposure of Access Control List Files to an Unauthorized Control
説明Gallop JFlow management system Third, vulnerability location /WF/Ath/EntityMutliFile_Load.do
ソース⚠️ https://github.com/sweatxi/BugHub/blob/main/Jinan%20Gallop%20JFlow%20CMS%20port%20is%20not%20authorized%20to%20cause%20the%20leakage%20of%20database%20attachment%20information.pdf
ユーザー
 hexixi (UID 59932)
送信2024年09月11日 10:01 (2 年 ago)
モデレーション2024年09月19日 16:27 (8 days later)
ステータス承諾済み
VulDBエントリ278153 [Jinan Chicheng Company JFlow 2.0.0 Attachment EntityMutliFile_Load.do AttachmentUploadController oid 特権昇格]
ポイント15

概要

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!