| 标题 | qinglong v2.20.1 Remote Command Execution |
|---|
| 描述 | whyour/qinglong has a Remote Command Execution Vulnerability. This vulnerability is a remote command execution vulnerability caused by the system's failure to strictly filter the api interface and the user's incoming parameters. Attackers can obtain server permissions by executing arbitrary commands through vulnerabilities, which may lead to further attacks on the intranet. |
|---|
| 来源 | ⚠️ https://github.com/A7cc/cve/issues/6 |
|---|
| 用户 | a7cc (UID 81317) |
|---|
| 提交 | 2026-02-27 06時53分 (1 月前) |
|---|
| 管理 | 2026-03-11 14時14分 (12 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 350394 [whyour qinglong 直到 2.20.1 API Interface back/loaders/express.ts command 权限提升] |
|---|
| 积分 | 19 |
|---|