Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Vulnerability in handling of uploaded QTI ZIP files
Vulnerability Description
QTIWorks is a software suite for standards-based assessment delivery. Prior to version 1.0-beta15, the QTIWorks Engine allows users to upload QTI content packages as ZIP files. The ZIP handling code does not sufficiently check the paths of files contained within ZIP files, so can insert files into other locations in the filesystem if they are writable by the process running the QTIWorks Engine. In extreme cases, this could allow anonymous users to change files in arbitrary locations in the filesystem. In normal QTIWorks Engine deployments, the impact is somewhat reduced because the default QTIWorks configuration does not enable the public demo functionality, so ZIP files can only be uploaded by users with "instructor" privileges. This vulnerability is fixed in version 1.0-beta15. There are no database configuration changes required when upgrading to this version. No known workarounds for this issue exist.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
QTIWorks 路径遍历漏洞
Vulnerability Description
QTIWorks是Dave McKain个人开发者的一个基于标准的评估交付软件套件。 QTIWorks 1.0-beta15之前版本存在安全漏洞,该漏洞源于允许用户将QTI内容包作为ZIP文件上传,ZIP处理代码没有充分检查ZIP文件中包含的文件的路径,这可能允许匿名用户改变文件系统中任意位置的文件。
CVSS Information
N/A
Vulnerability Type
N/A