| Title | https://github.com/megagao/production_ssm production_ssm 1 remote code execution |
|---|
| Description | A vulnerability classified as critical was discovered in the production management ERP system production_ssm. This affects the picture upload functionality of the file PictureServiceImpl.java. A carefully crafted malicious script file upload can lead to remote code execution. |
|---|
| Source | ⚠️ https://github.com/Hao-Ni/CVE/issues/4 |
|---|
| User | fatd0g (UID 84578) |
|---|
| Submission | 05/06/2025 03:01 (1 Year ago) |
|---|
| Moderation | 05/15/2025 14:34 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 309069 [feng_ha_ha/megagao ssm-erp/production_ssm 1.0 PictureServiceImpl.java uploadPicture File unrestricted upload] |
|---|
| Points | 18 |
|---|