Submit #181498: The webservice module of mountain flood Disaster monitoring and warning system 2.0 has arbitrary file upload vulnerabilityinfo

TitleThe webservice module of mountain flood Disaster monitoring and warning system 2.0 has arbitrary file upload vulnerability
DescriptionChengdu Wanjiang Gangli Technology Co., LTD. - The webservice module of Mountain flood Disaster Monitoring and early warning System 2.0 has unauthorized arbitrary file upload vulnerability, and the attacker can upload webshell directly to the target server without logging in.Chengdu Wanjiang Gangli Technology Co., LTD. - The webservice module of Mountain flood Disaster Monitoring and early warning System 2.0 has unauthorized arbitrary file upload vulnerability, and the attacker can upload webshell directly to the target server without logging in.
Source⚠️ https://github.com/GUIqizsq/cve/blob/main/upload_2.md
User
 GUIqizsq (UID 50449)
Submission07/12/2023 11:19 (3 years ago)
Moderation07/20/2023 10:28 (8 days later)
StatusAccepted
VulDB entry235071 [Chengdu Flash Flood Disaster Monitoring and Warning System File Name ImageStationDataService.asmx random values]
Points20

Do you want to use VulDB in your project?

Use the official API to access entries easily!