| 제목 | Bdtask Flight Booking Software B2B Portal v3.1 Unrestricted File Upload |
|---|
| 설명 | The application's 'Deposit' feature within the B2B portal's transaction module allows authenticated users to upload files. The file upload functionality does not properly validate file types, allowing for the upload of PHP web shells. An authenticated attacker can upload a malicious script and then access it to execute arbitrary commands on the server. |
|---|
| 원천 | ⚠️ https://github.com/4m3rr0r/PoCVulDb/blob/main/README11.md |
|---|
| 사용자 | 4m3rr0r (UID 85795) |
|---|
| 제출 | 2025. 10. 11. PM 02:45 (8 개월 ago) |
|---|
| 모더레이션 | 2025. 10. 25. PM 06:21 (14 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 329892 [Bdtask Flight Booking Software 까지 3.1 Deposit deposit 권한 상승] |
|---|
| 포인트들 | 18 |
|---|