| 标题 | project_team Tmall_demo 2025/05/05 latest Arbitrary file upload vulnerability |
|---|
| 描述 | The latest version of the Tmall_demo has an arbitrary file upload vulnerability in the tmall/admin/uploadCategoryImage interface,Attackers can upload malicious files (such as webshells, viruses, and malicious scripts) to gain control of the server or steal sensitive information. |
|---|
| 来源 | ⚠️ https://github.com/bdkuzma/vuln/issues/9 |
|---|
| 用户 | baihekuz (UID 84516) |
|---|
| 提交 | 2025-05-06 08時35分 (12 月前) |
|---|
| 管理 | 2025-05-23 20時41分 (18 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 310209 [Tmall Demo 直到 20250505 uploadProductImage 文件 权限提升] |
|---|
| 积分 | 18 |
|---|