Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
admin/upload.php in le.cms 1.4 and earlier allows remote attackers to bypass administrative authentication, and upload and execute arbitrary files in images/, via a nonzero value for the submit0 parameter in conjunction with filenames in the filename and upload parameters.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
le.cms admin/upload.php 权限绕过漏洞
Vulnerability Description
le.cms 1.4及其早期版本的admin/upload.php允许远程攻击者通过submit0参数一个非零的值连同文件名参数和上传参数的文件名来绕过权限,上传和执行任意在images/的文件。
CVSS Information
N/A
Vulnerability Type
N/A