| Название | vendor https://www.lingxing.com/ v2 remote code execution |
|---|
| Описание | A critical security vulnerability has been identified in the file upload functionality of the .NET system. This vulnerability allows unauthenticated users to upload arbitrary files, which can lead to remote code execution (RCE) and potentially grant attackers full control over the server. |
|---|
| Источник | ⚠️ https://github.com/666lail/report/blob/main/tmp/fileUpload_1.md |
|---|
| Пользователь | 207556249 (UID 81808) |
|---|
| Представление | 01.04.2025 16:00 (1 Год назад) |
|---|
| Модерация | 14.04.2025 00:14 (12 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 304592 [Lingxing ERP 2 FileUpload.ashx?method=DoUpload Файл эскалация привилегий] |
|---|
| Баллы | 17 |
|---|