Submit #506660: esafenet DLP V1.9.1 RCE
| Title | esafenet DLP V1.9.1 RCE |
|---|---|
| Description | Unauthenticated File Upload Leading to Remote Code Execution (RCE) The application allows unauthenticated users to upload files via the `/gok4` endpoint. The uploaded files are not properly validated, which can lead to remote code execution (RCE) if a malicious file is uploaded. |
| Source | ⚠️ https:/ |
| User | heihei_XZ (UID 81980) |
| Submission | 02/25/2025 14:31 (1 Year ago) |
| Moderation | 03/08/2025 15:15 (11 days later) |
| Status | Duplicate |
| VulDB entry | 296506 [hzmanyun Education and Training System 3.1.1 saveImage File unrestricted upload] |
| Points | 0 |