Kordil EDMS v2.2.60rc3 Unauthenticated Arbitrary File Upload

An unauthenticated arbitrary file upload vulnerability exists in Kordil EDMS v2.2.60rc3. The application exposes an upload endpoint (users_add.php) that allows attackers to upload files to the /userpictures/ directory without authentication. This flaw enables remote code execution by uploading a PHP payload and invoking it via a direct HTTP request.

N/A

危险类型文件的不加限制上传

Kordil EDMS 安全漏洞

Kordil EDMS是土耳其Kordil公司的一套开源的电子文档管理系统。该系统支持文档管理和文档控制等功能。 Kordil EDMS v2.2.60rc3版本存在安全漏洞，该漏洞源于未验证上传文件类型，可能导致任意文件上传和远程代码执行。

N/A

N/A