| Название | Gatship Web Module >20-12-2018 - Arbitrary File Upload [CORRECTED] |
|---|
| Описание | Gatship Web Module >20-12-2018 suffers from a vulnerability within the "Documents" area which allows authenticated attackers to upload any file type to the server. This vulnerability is related to "uploadDocFile".
This issue has been fixed in the latest version and was discovered by Gionathan Reale |
|---|
| Источник | ⚠️ http://www.gatship.com/ |
|---|
| Пользователь | GionathanReale (UID 2768) |
|---|
| Представление | 08.04.2019 09:00 (7 лет назад) |
|---|
| Модерация | 09.04.2019 08:36 (24 hours later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 133141 [GAT-Ship Web Module до 1.39 File Upload эскалация привилегий] |
|---|
| Баллы | 14 |
|---|