Отправить #380498: elunez eladmin <=v2.7 Path Traversal: 'dir/../../filename'Информация

Названиеelunez eladmin <=v2.7 Path Traversal: 'dir/../../filename'
ОписаниеEladmin v2.7 has an arbitrary file upload vulnerability in the Database management and Deployment management. Attackers can construct filenames like ../../file to upload arbitrary files to arbitrary directories or delete arbitrary files in arbitrary directories. Details can be seen in: https://github.com/elunez/eladmin/issues/851
Источник⚠️ https://github.com/elunez/eladmin/issues/851
Пользователь
 nerowander (UID 72513)
Представление26.07.2024 09:32 (2 лет назад)
Модерация04.08.2024 08:10 (9 days later)
Статуспринято
Запись VulDB273551 [elunez eladmin до 2.7 Database Management/Deployment Management upload Файл эскалация привилегий]
Баллы18

ПредыдущийОбзорДалее

Want to know what is going to be exploited?

We predict KEV entries!