Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated users to execute arbitrary JSP code via vectors involving an upload of an image file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Infinite Automation Systems Mango Automation 任意文件上传漏洞
Vulnerability Description
Infinite Automation Systems Mango Automation是美国Infinite Automation Systems公司的一套开源的基于Web的SCADA(数据采集与监视控制)、HMI和自动化软件。该软件可对传感器、PLC、数据库中的数据提供实时记录、生成日志和报告、发送警报等功能。 Infinite Automation Systems Mango Automation中存在任意文件上传漏洞,该漏洞源于程序没有正确验证上传的图像文件。远程攻击者可利用该漏洞执行任意JSP代
CVSS Information
N/A
Vulnerability Type
N/A