| 제목 | Code-projects Content Management System v1.0 Arbitrary file upload vulnerability |
|---|
| 설명 | A Arbitrary file upload vulnerability vulnerability was identified within the " publishnews.php" file of the "Content Management System" project. The root cause is that attackers can bypass file type detection via "Content-Type". Then upload malicious Trojan files. As a result, attackers can upload malicious scripts and execute them to directly control servers, steal data, or launch subsequent attacks that seriously threaten system security. In order to safeguard system security and maintain data integrity and confidentiality, corrective action must be taken immediately. |
|---|
| 원천 | ⚠️ https://github.com/Limingqian123/CVE/issues/6 |
|---|
| 사용자 | Mobird (UID 93849) |
|---|
| 제출 | 2025. 12. 26. AM 04:00 (3 개월 ago) |
|---|
| 모더레이션 | 2025. 12. 28. AM 11:09 (2 days later) |
|---|
| 상태 | 중복 |
|---|
| VulDB 항목 | 290859 [code-projects Content Management System 1.0 Publish News Page /admin/publishnews.php image 권한 상승] |
|---|
| 포인트들 | 0 |
|---|