Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Directory Traversal vulnerability in the Unzip feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to write files to arbitrary directories via relative paths in ZIP archives.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Elements-IT HTTP Commander 路径遍历漏洞
Vulnerability Description
Elements-IT HTTP Commander是德国Elements-IT公司的托管在服务器上的基于 Web 的文件管理解决方案。它提供了处理文件的基本功能(创建、复制、删除等)和许多其他附加功能,例如与云服务的集成、直接在浏览器中在线编辑 Office 文档、标签、评论等。 Elements-IT HTTP Commander 存在路径遍历漏洞,该漏洞源于Elements-IT HTTP Commander 5.3.3中的Unzip特性中存在目录遍历漏洞。攻击者可利用该漏洞通过ZIP档案中的相对路
CVSS Information
N/A
Vulnerability Type
N/A