Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in admin/uploadImage.html in SearchBlox before 8.2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension and the image/jpeg content type, a different vulnerability than CVE-2013-3590.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SearchBlox 任意文件上传漏洞
Vulnerability Description
SearchBlox是美国SearchBlox公司的一套开源免费的基于Lucene(全文检索引擎工具包)构建的企业搜索和分析解决方案。该方案提供一个基于Web的管理界面,可以管理整个搜索系统。 SearchBlox 8.2之前版本的admin/uploadImage.html页面中存在任意文件上传漏洞。远程攻击者可通过上传特制的可执行文件利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A