Submit #753973: Tsinghua Unigroup Electronic Archives System 3.2.210802(62532) Unrestricted Uploadinfo

TitleTsinghua Unigroup Electronic Archives System 3.2.210802(62532) Unrestricted Upload
DescriptionA critical security vulnerability has been identified in Tsinghua Unigroup Electronic Archives System 3.2.210802 (62532). Due to improper validation in the file upload mechanism, a remote attacker can upload arbitrary files without authentication. Successful exploitation may lead to full system compromise, including arbitrary code execution, data tampering, or persistent backdoor deployment. This vulnerability poses a severe risk to affected deployments and requires immediate remediation.
Source⚠️ https://github.com/luoye197-prog/ziguang-fileupload
User
 lanmeik (UID 95270)
Submission02/07/2026 01:21 PM (2 months ago)
Moderation02/18/2026 02:36 PM (11 days later)
StatusAccepted
VulDB entry346475 [Tsinghua Unigroup Electronic Archives System up to 3.2.210802(62532) uploadFile.html File unrestricted upload]
Points20

PreviousOverviewNext