Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Race condition in articles/BitArticle.php in Bitweaver 1.3, when run on Apache with the mod_mime extension, allows remote attackers to execute arbitrary PHP code by uploading arbitrary files with double extensions, which are stored for a small period of time under the webroot in the temp/articles directory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bitweaver articles/BitArticle.php 任意PHP代码执行漏洞
Vulnerability Description
Bitweaver 1.3中的articles/BitArticle.php存在竞态条件。在带mod_mime扩展名的Apache上运行时,远程攻击者可以通过上传可在temp/articles目录中的webroot下短时间储存的,带有双重扩展名的任意文件,执行任意PHP代码。
CVSS Information
N/A
Vulnerability Type
N/A