Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Unrestricted Upload of File with Dangerous Type in EasyUse MailHunter Ultimate
Vulnerability Description
Unrestricted upload of file with dangerous type vulnerability in create template function in EasyUse MailHunter Ultimate 2023 and earlier allows remote authenticated users to perform arbitrary system commands with ‘NT Authority\SYSTEM‘ privilege via a crafted ZIP archive.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
EasyUse MailHunter Ultimate 代码问题漏洞
Vulnerability Description
EasyUse MailHunter Ultimate是中国EasyUse公司的一个准确的电子邮件查找工具。 EasyUse MailHunter Ultimate 2023及之前版本存在安全漏洞,该漏洞源于存在危险类型文件不受限制上传漏洞,允许经过身份验证的远程用户通过精心设计的ZIP存档执行任意系统命令。
CVSS Information
N/A
Vulnerability Type
N/A