Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ALLE INFORMATION CO., LTD. School Manage System - Security Misconfiguration
Vulnerability Description
The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of Unrestricted file upload (RCE) , that would allow attackers to gain access in the hosting machine.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
ALLE INFORMATION School Manage System 代码问题漏洞
Vulnerability Description
ALLE INFORMATION School Manage System是中国台湾全谊信息(ALLE INFORMATION)公司的一套校务管理系统。 ALLE INFORMATION School Manage System 2020之前版本中存在代码问题漏洞,该漏洞源于文件上传过滤器配置错误。攻击者可利用该漏洞向系统上传任意格式的文件。
CVSS Information
N/A
Vulnerability Type
N/A