Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
With an admin account, the .htaccess file in Artica Pandora FMS <=755 can be overwritten with the File Manager component. The new .htaccess file contains a Rewrite Rule with a type definition. A normal PHP file can be uploaded with this new "file type" and the code can be executed with an HTTP request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Artica Pandora FMS 注入漏洞
Vulnerability Description
Artica Pandora FMS是西班牙Artica公司的一套监控系统。该系统通过可视化的方式监控网络、服务器、虚拟基础架构和应用程序等。 Artica Pandora FMS 755及之前版本存在安全漏洞,该漏洞源于.htaccess文件可以被文件管理器组件覆盖,新的.htaccess文件包含带有类型定义的重写规则。
CVSS Information
N/A
Vulnerability Type
N/A