Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in index.php in WikiWebWeaver 1.1 and earlier allows remote attackers to upload and execute arbitrary PHP code via an upload action specifying a filename with a double extension such as .gif.php, which is accessible from data/documents/.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WikiWebWeaver'index.php' 任意文件上传漏洞
Vulnerability Description
WikiWebWeaver 1.1版本及其早期版本的index.php中存在不限制文件上传漏洞。远程攻击者可以借助指名一个具有双重扩展名的文件名的上传操作,例如在data/documents/中获得的.gif.php,上传并执行任意PHP指令。
CVSS Information
N/A
Vulnerability Type
N/A