| Название | EmpireSoft EmpireCMS <= 8.0 Unrestricted Upload |
|---|
| Описание | A file upload restriction bypass vulnerability exists in EmpireCMS <= 8.0. The vulnerability is located in the CheckSaveTranFiletype() function of e/class/connect.php. The blacklist-based file type validation fails to block dangerous file types including .htaccess and .user.ini, allowing authenticated users to upload Apache/Nginx configuration files that enable PHP code execution for arbitrary file extensions, ultimately leading to Remote Code Execution on the server. |
|---|
| Источник | ⚠️ https://note-hxlab.wetolink.com/share/28QXRLje7Uz1 |
|---|
| Пользователь | gets (UID 71108) |
|---|
| Представление | 22.12.2025 06:42 (4 месяцы назад) |
|---|
| Модерация | 01.01.2026 12:09 (10 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 339345 [EmpireSoft EmpireCMS до 8.0 e/class/connect.php CheckSaveTranFiletype эскалация привилегий] |
|---|
| Баллы | 20 |
|---|