Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Kiteworks Secure Data Forms is vulnerable to an Unrestricted Upload of File with Dangerous Type
Vulnerability Description
Kiteworks is a private data network (PDN). In Kiteworks Secure Data Forms prior to version 9.2.1, the manager of a form could potentially exploit an Unrestricted Upload of File with Dangerous Type due to a missing validation. Upgrade Kiteworks to version 9.2.1 or later to receive a patch.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:L
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
Kiteworks Secure Data Forms 代码问题漏洞
Vulnerability Description
Kiteworks Secure Data Forms是美国Kiteworks公司的一款提供安全数据收集与表单提交管理能力的数据交互工具。 Kiteworks Secure Data Forms 9.2.1之前版本存在代码问题漏洞,该漏洞源于缺少验证,可能导致上传危险类型文件。
CVSS Information
N/A
Vulnerability Type
N/A