Submeter #374047: Nanjing Xingyuantu Technology firms SparkShop Mall System <=1.1.6 Unrestricted Uploadinformação

TítuloNanjing Xingyuantu Technology firms SparkShop Mall System <=1.1.6 Unrestricted Upload
Descrição vulnerability categorised as critical has been discovered in SparkShop (Spark Mall) B2C Mall. This affects sections of the unauthorised interface file app/api/controller/Common.php. Manipulation of the parameter file results in arbitrary file uploads
Fonte⚠️ https://github.com/J1rrY-learn/learn/blob/main/sparkshop_upload.md
Utilizador
 J1rrY (UID 64327)
Submissão13/07/2024 06h29 (há 2 anos)
Moderação13/07/2024 07h40 (1 hour later)
EstadoAceite
Entrada VulDB271403 [Nanjing Xingyuantu Technology SparkShop até 1.1.6 /api/Common/uploadFile Ficheiro Elevação de Privilégios]
Pontos17

VoltarVisão GeralPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!