N/A

Unrestricted file upload vulnerability in includes/shared_scripts/wysiwyg_editor/assetmanager/assetmanager.asp in DMXReady Registration Manager 1.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in assets/webblogmanager.

N/A

N/A

DMXReady Registration Manager 'assetmanager.asp'任意文件上传漏洞

DMXReady Registration Manager 1.1版本的includes/shared_scripts/wysiwyg_editor/assetmanager/assetmanager.asp中存在无限制文件上传漏洞。远程攻击者通过上传一个具有可执行扩展名的文件并通过向assets/webblogmanager的文件提交一个直接的请求来对其进行访问，执行任意代码。

N/A

N/A