Gửi #56291: MxsDoc zip slipthông tin

tiêu đềMxsDoc zip slip
Mô tảMxsDoc a file decompression loopholes exist in the web application, also called Zip Slip vulnerability(https://security.snyk.io/research/zip-slip-vulnerability). This vulnerability can cause any file to be written, such as a malicious jsp file to the web root, thus getshell. Impact Affected version: less than or equal to DocSys_V2.02.37(latest version) Condition of utilization:The administrator or super administrator rights are required Impact:A zip slip vulnerability in this system can result in getshell details: https://gitee.com/RainyGao/DocSys/issues/I65IYU
Nguồn⚠️ https://github.com/A-TGAO/MxsDocVul/blob/main/ZipSlipVul.md
Người dùng
 TGAO (UID 37046)
Đệ trình10/12/2022 04:29 (cách đây 4 những năm)
Kiểm duyệt11/12/2022 08:47 (1 day later)
Trạng tháiđược chấp nhận
Mục VulDB215271 [RainyGao DocSys 2.02.37 ZIP File Decompression nâng cao đặc quyền]
điểm16

TrướcTổng QuanTiếp theo

Might our Artificial Intelligence support you?

Check our Alexa App!