| 标题 | Tsinghua Unigroup Electronic Archives System 3.2.210802(62532) Unrestricted Upload |
|---|
| 描述 | A critical security vulnerability has been identified in Tsinghua Unigroup Electronic Archives System 3.2.210802 (62532).
Due to improper validation in the file upload mechanism, a remote attacker can upload arbitrary files without authentication.
Successful exploitation may lead to full system compromise, including arbitrary code execution, data tampering, or persistent backdoor deployment.
This vulnerability poses a severe risk to affected deployments and requires immediate remediation. |
|---|
| 来源 | ⚠️ https://github.com/luoye197-prog/ziguang-fileupload |
|---|
| 用户 | lanmeik (UID 95270) |
|---|
| 提交 | 2026-02-07 13時21分 (4 月前) |
|---|
| 管理 | 2026-02-18 14時36分 (11 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 346475 [Tsinghua Unigroup Electronic Archives System 直到 3.2.210802(62532) uploadFile.html 文件 权限提升] |
|---|
| 积分 | 20 |
|---|