| Название | yonyon U8 Cloud V2.0/V2.1/V2.3/V2.5/V2.6/V2.7/V2.65/V3.0/V3.1/V3.2/V3.5/V3.6/V3.6sp/V5.0/V5.0sp/V5.1/V5.1sp File upload |
|---|
| Описание | In the "/service/NCloudGatewayServlet" interface, it is possible to bypass software security checks and upload files of any format by constructing specific Ts and Sign request headers. |
|---|
| Источник | ⚠️ https://github.com/IceSc0rpion/CVE/issues/1 |
|---|
| Пользователь | IceSc0rpion (UID 91607) |
|---|
| Представление | 14.10.2025 06:11 (8 месяцы назад) |
|---|
| Модерация | 27.10.2025 14:58 (13 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 330129 [Yonyou U8 Cloud до 5.1sp Request Header NCloudGatewayServlet ts/sign эскалация привилегий] |
|---|
| Баллы | 15 |
|---|