| 标题 | 上海灵当信息科技有限公司 Lingdang CRM <= 8.6.4.3 arbitrary file upload |
|---|
| 描述 | Lingdang CRM is an intelligent customer relationship management tool specifically designed for small and medium-sized enterprises. It is developed and operated by Shanghai Lingdang Information Technology Co., Ltd. It is widely used in various industries including finance, education, healthcare, IT services, and real estate. Lingdang CRM helps businesses meet their customer personalization management needs and enhances their competitiveness. Whether it's about acquiring new customers, maintaining existing ones, or managing the sales process and service management, Lingdang CRM provides comprehensive and efficient solutions.
LingDang CRM versions x.x.x.x and earlier are affected by an arbitrary file upload vulnerability, which occurs at /crm/wechatSession/index.php. This vulnerability can be exploited without requiring any special permissions. |
|---|
| 来源 | ⚠️ https://wiki.shikangsi.com/post/share/8c9422c2-ecad-4471-97a2-6f8035a2ddf5 |
|---|
| 用户 | XingYue_Mstir (UID 72225) |
|---|
| 提交 | 2024-11-04 04時14分 (1 年前) |
|---|
| 管理 | 2024-11-12 07時45分 (8 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 283970 [上海灵当信息科技有限公司 Lingdang CRM 直到 8.6.4.3 index.php?msgid=1&operation=upload 文件 权限提升] |
|---|
| 积分 | 20 |
|---|