Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Arbitrary File Upload in SMG Software's Information Portal
Vulnerability Description
Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in SMG Software Information Portal allows Code Injection, Upload a Web Shell to a Web Server, Code Inclusion.This issue affects Information Portal: before 13.06.2025.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
SMG Software Information Portal 代码问题漏洞
Vulnerability Description
SMG Software Information Portal是土耳其SMG Software公司的一个信息门户产品。 SMG Software Information Portal 存在代码问题漏洞,该漏洞源于危险类型文件无限制上传和特殊元素中和不当,可能导致代码注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A