漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Vaultize 21.07.27. When uploading files, there is no check that the filename parameter is correct. As a result, a temporary file will be created outside the specified directory when the file is downloaded. To exploit this, an authenticated user would upload a file with an incorrect file name, and then download it.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Vaultize 安全漏洞
Vulnerability Description
Vaultize是Vaultize公司的一个企业平台。 Vaultize 21.07.27版本存在安全漏洞,该漏洞源于缺少文件名过滤,导致存在任意文件上传漏洞。
CVSS Information
N/A
Vulnerability Type
N/A