| Название | tarzan-cms 1.0.0 Incomplete Identification of Uploaded File Variables |
|---|
| Описание | Address: https://gitee.com/taisan/tarzan-cms
Purpose: The goal is to build a simple and easy-to-use CMS content management system, allowing small and micro enterprises with no technical background to quickly create websites, as well as individuals to build personal blogs and personal brands.
In the latest version of this CMS, there is an arbitrary file upload vulnerability. |
|---|
| Источник | ⚠️ https://gitee.com/taisan/tarzan-cms/issues/IBCUPG |
|---|
| Пользователь | redpomelo (UID 79353) |
|---|
| Представление | 21.12.2024 14:30 (1 Год назад) |
|---|
| Модерация | 28.12.2024 17:42 (7 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 289713 [taisan tarzan-cms 1.0.0 Article Management UploadController.java UploadResponse Файл эскалация привилегий] |
|---|
| Баллы | 19 |
|---|