Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ARMBot Unrestricted File Upload via upload.php
Vulnerability Description
ARMBot contains an unrestricted file upload vulnerability in upload.php that allows unauthenticated attackers to upload arbitrary files by manipulating the file parameter with path traversal sequences. Attackers can upload PHP files with traversal payloads ../public_html/ to write executable code to the web root and achieve remote code execution.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
ARMBot 安全漏洞
Vulnerability Description
ARMBot是ARMBot公司的一个软件。 ARMBot存在安全漏洞,该漏洞源于upload.php存在不受限制的文件上传,可能导致未经验证的攻击者上传任意文件并实现远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A