Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in ScriptsFeed Realtor Classifieds System (aka Real Estate Classifieds) allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in re_images/.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ScriptsFeed Realtor Classifieds System 任意文件上传漏洞
Vulnerability Description
ScriptsFeed Realtor Classifieds System (又称作 Real Estate Classifieds)的任意文件上传漏洞。远程认证用户通过会上传一个具有例如logo那样的可执行扩展名的一个文件并向classifieds1/yellow_images/的文件提交一个直接请求来访问该文件,以执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A