| Название | https://gitee.com/panhainan/DS-Java DS-Java 1.0 Code Injection via File Upload |
|---|
| Описание | The uploadUserPic.action interface of DS-Java 1.0 version is vulnerable to arbitrary file upload. An attacker can execute JSP code by uploading malicious.jsp files. |
|---|
| Источник | ⚠️ https://github.com/caigo8/CVE-md/blob/main/DS-Java/%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E4%B8%8A%E4%BC%A0RCE.md |
|---|
| Пользователь | Caigo (UID 81287) |
|---|
| Представление | 10.04.2025 20:42 (1 Год назад) |
|---|
| Модерация | 21.04.2025 15:12 (11 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 305771 [panhainan DS-Java 1.0 FileUpload.java uploadUserPic.action fileUpload эскалация привилегий] |
|---|
| Баллы | 15 |
|---|