| 제목 | YJCMS--file upload exists |
|---|
| 설명 | Yunjing cms is developed by gansu yunjing digital technology co., ltd. YJcms (Cloudscape cms) is an open source PHP enterprise website building management system developed based on ThinkPaPHP5.0.24. Yjcms adheres to the concept of minimalist, fast and extreme development, integrates enterprise, tourism and mall modules for development, and is a module and plug-in that can be easily and rapidly expanded. To facilitate developers to quickly build their own applications.
YJcms is a set of cms system developed by Yunjing Network Technology Co., Ltd.A vulnerability classified as critical was found in YJcms. There is an arbitrary file upload vulnerability in the editing place of the system user's avatar, which can be used to obtain server permissions. |
|---|
| 원천 | ⚠️ https://github.com/swzaq/swzaq |
|---|
| 사용자 | swzaq (UID 34857) |
|---|
| 제출 | 2022. 10. 30. PM 12:08 (4 연령 ago) |
|---|
| 모더레이션 | 2022. 10. 31. PM 02:19 (1 day later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 212500 [Yunjing CMS upload_img.html 파일 권한 상승] |
|---|
| 포인트들 | 20 |
|---|