Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
includes/library.php in netOffice Dwins 1.3 p2 compares the demoSession variable to the 'true' string literal instead of the true boolean literal, which allows remote attackers to bypass authentication and execute arbitrary code by setting this variable to 1, as demonstrated by uploading a PHP script via an add action to projects_site/uploadfile.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
netOffice Dwins 'includes/library.php' 权限绕过漏洞和任意文件上传漏洞
Vulnerability Description
netOffice Dwins 1.3 p2中的includes/library.php 用demoSession 变量与 'true' string literal 而不是true boolean literal进行匹配,这会导致远程攻击者通过把该变量值设置为1来绕过权限并执行任意代码,例如,通过对projects_site/uploadfile.php的一个添加操作来上传一个PHP脚本。
CVSS Information
N/A
Vulnerability Type
N/A