Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
eyoom builder Remote Code Execution Vulnerability
Vulnerability Description
Remote code execution vulnerability can be achieved by using cookie values as paths to a file by this builder program. A remote attacker could exploit the vulnerability to execute or inject malicious code.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Eyoom Builder 路径遍历漏洞
Vulnerability Description
Eyoom Builder是韩国Eyoom公司的一款构建器。 Eyoom Builder 4.5.4之前版本存在路径遍历漏洞,该漏洞源于使用cookie值作为文件的路径来进行远程代码执行,远程攻击者可以利用该漏洞执行或注入恶意代码。
CVSS Information
N/A
Vulnerability Type
N/A