{"type": "myhack58", "published": "2009-12-26T00:00:00", "reporter": "\u4f5a\u540d", "bulletinFamily": "info", "cvelist": [], "cvss": {"vector": "NONE", "score": 0.0}, "enchantments": {"score": {"value": -0.2, "vector": "NONE", "modified": "2016-11-11T18:08:58", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-11T18:08:58", "rev": 2}, "vulnersScore": -0.2}, "edition": 1, "viewCount": 0, "id": "MYHACK58:62200925723", "references": [], "lastseen": "2016-11-11T18:08:58", "href": "http://www.myhack58.com/Article/html/3/62/2009/25723.htm", "modified": "2009-12-26T00:00:00", "title": "An enterprise Web application upload vulnerability-vulnerability warning-the black bar safety net", "description": "Author: Dragon shadow VS hx dragons \n\nLooks like Is a very old program even in the Baidu and Google didn't find a program today next to the Note When or unintentionally found that the use of this program website \n\ngoogle. the cn keyword inurl:zhaoshang. asp? bid search to 5 6 Article 3 of the results were acceptable.~ after all is the old program. \n\nVulnerabilities page upload_flash. asp can upload asp format(looks like you can upload any format) with the capture tool is very simple to upload after the address is applied directly in the root directory of the site. \n\n"}

{}