Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SourceCodester Company Website CMS Background Upload Logo Icon updatelogo.php unrestricted upload
Vulnerability Description
A vulnerability was found in SourceCodester Company Website CMS. It has been classified as critical. This affects an unknown part of the file /dashboard/updatelogo.php of the component Background Upload Logo Icon. The manipulation of the argument xfile/ufile leads to unrestricted upload. It is possible to initiate the attack remotely. The identifier VDB-205881 was assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
Company Website CMS 代码问题漏洞
Vulnerability Description
Company Website CMS是Torrahclef个人开发者的一个公司网站/CMS。 Company Website CMS存在代码问题漏洞,该漏洞源于其后台上传Logo图标组件/dashboard/updatelogo.php的部分未知代码对参数xfile/ufile的操作导致上传不受限。
CVSS Information
N/A
Vulnerability Type
N/A