| 제목 | code-projects.org News Publishing Site Dashboard v1.0 RCE |
|---|
| 설명 | News publishing site dashboard is a PHP project.
In the Category List edit area, you can upload files.The code only verifies the Content-Type field in the request data packet, but does not verify the file content itself, which allows the Trojan to bypass the upload restriction and obtain server permissions. |
|---|
| 원천 | ⚠️ https://github.com/zzZxby/Vulnerability-Exploration/blob/main/%E4%BB%A3%E7%A0%81%E5%AE%A1%E8%AE%A12.md |
|---|
| 사용자 | zzzxby (UID 72794) |
|---|
| 제출 | 2025. 04. 13. PM 01:57 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 04. 26. AM 09:11 (13 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 306305 [codeprojects News Publishing Site Dashboard 1.0 Edit Category Page /edit-category.php category_image 권한 상승] |
|---|
| 포인트들 | 17 |
|---|