An enterprise Web application upload vulnerability-vulnerability warning-the black bar safety net
2009-12-26T00:00:00
ID MYHACK58:62200925723 Type myhack58 Reporter 佚名 Modified 2009-12-26T00:00:00
Description
Author: Dragon shadow VS hx dragons
Looks like Is a very old program even in the Baidu and Google didn't find a program today next to the Note When or unintentionally found that the use of this program website
google. the cn keyword inurl:zhaoshang. asp? bid search to 5 6 Article 3 of the results were acceptable.~ after all is the old program.
Vulnerabilities page upload_flash. asp can upload asp format(looks like you can upload any format) with the capture tool is very simple to upload after the address is applied directly in the root directory of the site.
{"type": "myhack58", "published": "2009-12-26T00:00:00", "reporter": "\u4f5a\u540d", "hashmap": [{"key": "bulletinFamily", "hash": "caf9b6b99962bf5c2264824231d7a40c"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d4be9c4fc84262b4f39f89565918568f"}, {"key": "description", "hash": "fdfd9cfce1333a3f6225db15d63d05df"}, {"key": "href", "hash": "d289bf3d4e57b0921f6a87d5cb46d3c4"}, {"key": "modified", "hash": "0e4813268a77803eb9218a939e3669c2"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "0e4813268a77803eb9218a939e3669c2"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "645396391020478112635e14b34a0f8b"}, {"key": "title", "hash": "cea52b3813b0b2abd2c835bb417a89c6"}, {"key": "type", "hash": "0665a8b0792e65b50ab13aef58a018dc"}], "bulletinFamily": "info", "cvelist": [], "cvss": {"vector": "NONE", "score": 0.0}, "hash": "c7db75ea97d6a5e5fb0225df1408969d2c63cfc3c9de1d90a819020970ef5985", "enchantments": {"score": {"vector": "NONE", "value": 5.0}, "dependencies": {"references": [], "modified": "2016-11-11T18:08:58"}, "vulnersScore": 5.0}, "edition": 1, "viewCount": 0, "id": "MYHACK58:62200925723", "history": [], "references": [], "lastseen": "2016-11-11T18:08:58", "objectVersion": "1.2", "href": "http://www.myhack58.com/Article/html/3/62/2009/25723.htm", "modified": "2009-12-26T00:00:00", "title": "An enterprise Web application upload vulnerability-vulnerability warning-the black bar safety net", "description": "Author: Dragon shadow VS hx dragons \n\nLooks like Is a very old program even in the Baidu and Google didn't find a program today next to the Note When or unintentionally found that the use of this program website \n\ngoogle. the cn keyword inurl:zhaoshang. asp? bid search to 5 6 Article 3 of the results were acceptable.~ after all is the old program. \n\nVulnerabilities page upload_flash. asp can upload asp format(looks like you can upload any format) with the capture tool is very simple to upload after the address is applied directly in the root directory of the site. \n\n"}
