CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1 matches found

seebug.org•added 2016/01/19 12:0 a.m.•389 views

泛微 OA sysinterface/codeEdit.jsp 页面任意文件上传

0x01 漏洞概述相关厂商：泛微OA 官方主页： http://www.weaver.com.cn/ 公开时间： 2015-11-25 漏洞类型：非授权访问/权限绕过无需登录上传文件。 http://localhost:8088/sysinterface/codeEdit.jsp?filename=5308.java&filetype=java filename为文件名称为空时会自动创建。 0x02 漏洞利用代码详情 String fileid = "Ewv"; String readonly = ""; boolean isCreate = false;...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by