漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker who has compromised a GoCD agent can upload a malicious file into a directory of a GoCD server. They can control the filename but the directory is placed inside of a directory that they can't control.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ThoughtWorks GoCD 路径遍历漏洞
Vulnerability Description
ThoughtWorks GoCD是美国ThoughtWorks公司的一个免费和开源的 CI/CD 服务器。 ThoughtWorks GoCD 21.3.0之前版本存在安全漏洞,入侵 GoCD 代理的攻击者可以利用该漏洞将恶意文件上传到 GoCD 服务器的目录中。
CVSS Information
N/A
Vulnerability Type
N/A