Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The vulnerability exists within processing of editscript.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. A directory traversal vulnerability allows a caller with standard user privileges to write arbitrary php files anywhere in the web service directory tree.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Schneider Electric U.motion Builder软件路径遍历漏洞
Vulnerability Description
Schneider Electric U.motion Builder software是法国施耐德电气(Schneider Electric)公司的一套为U.motion(楼宇自动化管理设备)创建自动化程序的工具。 Schneider Electric U.motion Builder软件1.3.4之前版本中editscript.php文件存在目录遍历漏洞。攻击者可利用该漏洞向Web服务目录树的任意位置写入php文件。
CVSS Information
N/A
Vulnerability Type
N/A