Submeter #399538: github//HFO4/ shudong-share 2.4.7 Arbitrary File Uploadinformação

Títulogithub//HFO4/ shudong-share 2.4.7 Arbitrary File Upload
DescriçãoThe reason for the vulnerability of arbitrary file upload is that the website application allows users to add any type of upload file extension in the management background, bypassing the whitelist restriction code. In addition, the fileReceiver. php code also performs a second blacklist check but can be bypassed using uppercase Php, resulting in arbitrary file upload.
Fonte⚠️ https://github.com/enjoyworld/webray.com.cn/blob/main/cves/shudong-share%20Any%20File%20Upload.md
Utilizador
 xmg404 (UID 74197)
Submissão29/08/2024 03h54 (há 2 anos)
Moderação30/08/2024 09h10 (1 day later)
EstadoAceite
Entrada VulDB276217 [HFO4 shudong-share 2.4.7 File Extension fileReceive.php Ficheiro Elevação de Privilégios]
Pontos18

VoltarVisão GeralPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!