| 제목 | Tiandy Technologies Co., Ltd. Integrated Management Platform 7.17.0 Unrestricted Upload of File with Dangerous Type |
|---|
| 설명 | A critical vulnerability exists in the /SetWebpagePic.jsp endpoint of the target system. The application fails to perform identity authentication for the caller and lacks proper sanitization or path validation for the targetPath and Suffix parameters.
An unauthenticated remote attacker can exploit this flaw by sending a specially crafted multipart/form-data POST request. This allows the attacker to write arbitrary JSP files into sensitive directories within the Web root. Successfully uploaded files can then be accessed via a URL, leading to Remote Code Execution (RCE) under the context of the Web service, eventually granting the attacker full control over the compromised server. |
|---|
| 원천 | ⚠️ https://my.feishu.cn/docx/EA9HdaXaQo80yTxKdw0c3UDmnmD?from=from_copylink |
|---|
| 사용자 | 0menc (UID 75423) |
|---|
| 제출 | 2026. 03. 03. AM 09:18 (3 개월 ago) |
|---|
| 모더레이션 | 2026. 03. 15. PM 05:30 (12 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 351144 [Technologies Integrated Management Platform 7.17.0 /SetWebpagePic.jsp targetPath/Suffix 권한 상승] |
|---|
| 포인트들 | 20 |
|---|