Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An unrestricted file upload vulnerability was discovered in catalog/productinfo/imageupload in Fecshop FecMall 2.3.4. An attacker can bypass a front-end restriction and upload PHP code to the webserver, by providing image data and the image/jpeg content type, with a .php extension. This occurs because the code relies on the getimagesize function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fecshop FecMall 代码问题漏洞
Vulnerability Description
飞猫科技 Fecshop FecMall是中国飞猫科技公司的一套开源的开源电子商务商城系统。 Fecshop FecMall 2.3.4版本中的‘catalog/productinfo/imageupload’函数存在代码问题漏洞。该漏洞源于网络系统或产品的代码开发过程中存在设计或实现不当的问题。
CVSS Information
N/A
Vulnerability Type
N/A