漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
LabCollector 6.0 though 6.15 allows remote code execution. An authenticated remote low-privileged user can upload an executable PHP file and execute system commands. The vulnerability is in the message function, and is due to insufficient validation of the file (such as shell.jpg.php.shell) being sent.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LabCollector 代码问题漏洞
Vulnerability Description
LabCollector是LabCollector公司的一个多合一的实验室管理平台。 LabCollector 6.0至6.15版本存在安全漏洞。攻击者利用该漏洞可以上传可执行的PHP文件并执行系统命令。
CVSS Information
N/A
Vulnerability Type
N/A