| Title | lserp ERP v8 RCE |
|---|
| Description | An unauthenticated file upload vulnerability has been identified in the .NET system. This vulnerability allows an attacker to upload arbitrary files, including potentially malicious ASPX files, which can lead to remote code execution and full server compromise. |
|---|
| Source | ⚠️ https://github.com/Rain1er/report/blob/main/Lserp/fileUpload_3.md |
|---|
| User | hqlzs (UID 81065) |
|---|
| Submission | 02/13/2025 16:26 (1 Year ago) |
|---|
| Moderation | 02/24/2025 18:28 (11 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 296696 [Lumsoft ERP 8 ASPX File UploadAjaxAPI.ashx unrestricted upload] |
|---|
| Points | 14 |
|---|