Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cloudflow - Unauthenticated file upload vulnerability
Vulnerability Description
Cloudflow contains a unauthenticated file upload vulnerability, which makes it possible for an attacker to upload malicious files to the CLOUDFLOW PROOFSCOPE built-in storage.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
HYBRID Software Cloudflow 代码问题漏洞
Vulnerability Description
HYBRID Software Cloudflow是HYBRID Software公司的一个用于打印文件处理、资产管理、软打样和工作流自动化的模块化生产工作流套件。 Hybrid Software Cloudflow存在安全漏洞,该漏洞源于存在文件上传漏洞。攻击者利用该漏洞可以将恶意文件上传到CLOUDFLOW PROOFSCOPE内置存储。
CVSS Information
N/A
Vulnerability Type
N/A