제출 #56291: MxsDoc zip slip정보

제목	MxsDoc zip slip
설명	MxsDoc a file decompression loopholes exist in the web application, also called Zip Slip vulnerability(https://security.snyk.io/research/zip-slip-vulnerability). This vulnerability can cause any file to be written, such as a malicious jsp file to the web root, thus getshell. Impact Affected version: less than or equal to DocSys_V2.02.37(latest version) Condition of utilization：The administrator or super administrator rights are required Impact：A zip slip vulnerability in this system can result in getshell details: https://gitee.com/RainyGao/DocSys/issues/I65IYU
원천	⚠️ https://github.com/A-TGAO/MxsDocVul/blob/main/ZipSlipVul.md
사용자	TGAO (UID 37046)
제출	2022. 12. 10. AM 04:29 (4 연령 ago)
모더레이션	2022. 12. 11. AM 08:47 (1 day later)
상태	수락
VulDB 항목	215271 [RainyGao DocSys 2.02.37 ZIP File Decompression 권한 상승]
포인트들	16

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!