AMASTAR Technology｜MeetingHub - Arbitrary File Upload

MeetingHub developed by HAMASTAR Technology has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

危险类型文件的不加限制上传

HAMASTAR MeetingHub 代码问题漏洞

HAMASTAR MeetingHub是中国台湾哈玛星（HAMASTAR）公司的一套无纸化会议系统。 HAMASTAR MeetingHub存在代码问题漏洞，该漏洞源于存在任意文件上传漏洞，可能导致未经验证的远程攻击者上传并执行Webshell后门，进而在服务器上执行任意代码。

N/A

N/A