漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
E-Business Designer (eBD) 3.1.4 and earlier allows remote attackers to upload or modify arbitrary files, and execute arbitrary code, via a direct request to (1) common/html_editor/image_browser.upload.html, (2) common/html_editor/image_browser.html, or (3) common/html_editor/html_editor.html. NOTE: this can also be used for cross-site scripting (XSS) attacks by uploading cascading style sheet (.CSS) files.
漏洞信息
N/A
漏洞
N/A
漏洞
E-Business Designer 多个输入验证漏洞
漏洞信息
E-Business Designer (eBD) 3.1.4及之前版本可以使远程攻击者借助对(1) common/html_editor/image_browser.upload.html, (2) common/html_editor/image_browser.html, 或(3) common/html_editor/html_editor.html的直接请求,上传或修改任意文件。 注意: 通过上传层叠式样式表(.CSS) 文件,此漏洞也可用于跨站脚本攻击(XSS)。
漏洞信息
N/A
漏洞
N/A