Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
WELLTEND TECHNOLOGY| BPMFlowWebkit - Arbitrary File Upload
Vulnerability Description
BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
WELLTEND BPMFlowWebkit 代码问题漏洞
Vulnerability Description
WELLTEND BPMFlowWebkit是中国台湾鸿名(WELLTEND)公司的一款业务流程管理系统。 WELLTEND BPMFlowWebkit存在代码问题漏洞,该漏洞源于存在任意文件上传漏洞,可能导致未经验证的远程攻击者上传和执行Web Shell后门,从而在服务器上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A