Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Zip Slip Vulnerability in BaserCMS
Vulnerability Description
BaserCMS is an open source content management system with a focus on Japanese language support. In affected versions users with upload privilege may upload crafted zip files capable of path traversal on the host operating system. This is a vulnerability that needs to be addressed when the management system is used by an unspecified number of users. If you are eligible, please update to the new version as soon as possible.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
baserCMS 路径遍历漏洞
Vulnerability Description
baserCMS是baserCMS(Basercms)团队的一套企业级内容管理系统(CMS)。 BaserCMS 存在路径遍历漏洞,具有上传权限的用户可以上传能够在主机操作系统上进行路径遍历的精心制作的 zip 文件。
CVSS Information
N/A
Vulnerability Type
N/A