제출 #602374: xiaoyunjie openvpn-cms-flask 1.2.7 Arbitrary File Write정보

제목xiaoyunjie openvpn-cms-flask 1.2.7 Arbitrary File Write
설명There is an unauthenticated arbitrary file upload vulnerability with path traversal capability exists in the upload_to_local endpoint (app/plugins/oss/app/controller.py), allowing attackers to upload arbitrary file into the server. Details can be found in https://github.com/xiaoyunjie/openvpn-cms-flask/issues/23.
원천⚠️ https://github.com/xiaoyunjie/openvpn-cms-flask/issues/23
사용자
 Tritium (UID 50779)
제출2025. 06. 22. PM 04:26 (10 개월 ago)
모더레이션2025. 06. 27. PM 01:03 (5 days later)
상태수락
VulDB 항목314092 [xiaoyunjie openvpn-cms-flask 까지 1.2.7 File Upload controller.py upload image 디렉토리 순회]
포인트들19

이전개요다음

Interested in the pricing of exploits?

See the underground prices here!