Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in the image upload component in Camera Life 2.6.2b4 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in a user directory under images/photos/upload.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Camera Life不限制的文件上传漏洞
Vulnerability Description
Camera Life是一个全功能的图像软件。 Camera Life的图像上传组件中存在无限制文件上传漏洞。远程认证用户可以通过上传一个具有可执行扩展名的文件并通过对images/photos/upload下的用户目录的文件提交一个直接请求来访问该文件,以执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A