Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Planet eStream before 6.72.10.07 allows attackers to call restricted functions, and perform unauthenticated uploads (Upload2.ashx) or access content uploaded by other users (View.aspx after Ajax.asmx/SaveGrantAccessList).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Planet Enterprises Planet eStream SQL注入漏洞
Vulnerability Description
Planet Enterprises Planet eStream是Planet Enterprises公司的一个非常简单和安全的工具。可以让各级教育的学生和教职员工更容易获得视频。 Planet Enterprises Planet eStream 6.72.10.07之前版本存在SQL注入漏洞,该漏洞源于上传任意文件导致远程代码,攻击者利用该漏洞可以重复同一请求无需事先身份验证,并上传任意文件。
CVSS Information
N/A
Vulnerability Type
N/A