| タイトル | Tiandy Technologies Co., Ltd. Integrated Management Platform 7.17.0 Unrestricted Upload of File with Dangerous Type |
|---|
| 説明 | A critical vulnerability exists in the /SetWebpagePic.jsp endpoint of the target system. The application fails to perform identity authentication for the caller and lacks proper sanitization or path validation for the targetPath and Suffix parameters.
An unauthenticated remote attacker can exploit this flaw by sending a specially crafted multipart/form-data POST request. This allows the attacker to write arbitrary JSP files into sensitive directories within the Web root. Successfully uploaded files can then be accessed via a URL, leading to Remote Code Execution (RCE) under the context of the Web service, eventually granting the attacker full control over the compromised server. |
|---|
| ソース | ⚠️ https://my.feishu.cn/docx/EA9HdaXaQo80yTxKdw0c3UDmnmD?from=from_copylink |
|---|
| ユーザー | 0menc (UID 75423) |
|---|
| 送信 | 2026年03月03日 09:18 (3 月 ago) |
|---|
| モデレーション | 2026年03月15日 17:30 (12 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 351144 [Technologies Integrated Management Platform 7.17.0 /SetWebpagePic.jsp targetPath/Suffix 特権昇格] |
|---|
| ポイント | 20 |
|---|