Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in process.php in Tizag Countdown Creator 3 allows remote attackers to execute arbitrary code by uploading a file with an executable extension via index.php, then accessing the uploaded file via a direct request to the file in pics/. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tizag Countdown Creater 'process.php' 任意文件上传漏洞
Vulnerability Description
Tizag Countdown Creato是一款倒计时任务管理工具程序。 Tizag Countdown Creator 3版本的process.php中存在无限制文件上传漏洞。远程攻击者通过上传一个具有可执行文件名的文件,并通过提交一个对pics/的文件的直接请求访问该上传文件,以执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A