Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in QuiXplorer 2.3 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension using the upload action to index.php, then accessing it via a direct request to the file in an unspecified directory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
QuiXplorer 无限制文件上传漏洞
Vulnerability Description
QuiXplorer是一款基于Web的文件管理器,它支持文档上传、下载、搜索、编辑等功能。 QuiXplorer 2.3及之前版本中存在无限制文件上传漏洞。远程攻击者可通过使用到index.php的上传操作上传带有可执行扩展的文件执行任意代码,然后借助向未明目录中文件的直接请求访问该上传的文件。
CVSS Information
N/A
Vulnerability Type
N/A