Submeter #547878: vendor https://www.lingxing.com/ v2 remote code executioninformação

Títulovendor https://www.lingxing.com/ v2 remote code execution
DescriçãoA critical security vulnerability has been identified in the file upload functionality of the .NET system. This vulnerability allows unauthenticated users to upload arbitrary files, which can lead to remote code execution (RCE) and potentially grant attackers full control over the server.
Fonte⚠️ https://github.com/666lail/report/blob/main/tmp/fileUpload_1.md
Utilizador
 207556249 (UID 81808)
Submissão01/04/2025 16h00 (há 1 Ano)
Moderação14/04/2025 00h14 (12 days later)
EstadoAceite
Entrada VulDB304592 [Lingxing ERP 2 FileUpload.ashx?method=DoUpload Ficheiro Elevação de Privilégios]
Pontos17

VoltarVisão GeralPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!