| 标题 | https://github.com/kefaming/mayi mayi 1.3.9 Unrestricted Upload of File with Dangerous Type |
|---|
| 描述 | mayi v1.3.9 version, the /tools/file/upload interface has arbitrary file upload. Attackers can upload malicious .php files and execute them as remote code |
|---|
| 来源 | ⚠️ https://github.com/caigo8/CVE-md/blob/main/%E8%9A%82%E8%9A%81%E6%88%90%E7%BB%A9%E7%AE%A1%E7%90%86%E7%B3%BB%E7%BB%9F/%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E4%B8%8A%E4%BC%A0RCE.md |
|---|
| 用户 | Caigo (UID 81287) |
|---|
| 提交 | 2025-04-22 19時37分 (11 月前) |
|---|
| 管理 | 2025-05-05 14時31分 (13 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 307408 [kefaming mayi 直到 1.3.9 File.php upload 文件 权限提升] |
|---|
| 积分 | 15 |
|---|