Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in the onAttachFiles function in the upload tool (inc/lib/attachment.lib.php) in Wiclear before 0.11.1 allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors related to filename validation. NOTE: some details were obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Wiclear onAttachFiles函数文件上传漏洞
Vulnerability Description
Wiclear是一种创建可在线自由编辑内容网站的软件 Wiclear 0.11.1之前版本的上传工具(inc/lib/attachment.lib.php)中的onAttachFiles函数存在未限制文件上传漏洞。远程攻击者可以利用函数中文件名校验缺陷,执行任意PHP代码或上传任意文件。
CVSS Information
N/A
Vulnerability Type
N/A