2 matches found
Incorrect Authorization
Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Incorrect Authorization via the uploadimage process in the Feishu extension. An attacker can access arbitrary files outside the intended file-system sandbox by submitting crafted upload...
MWCMS 代码问题漏洞
MWCMS is a content management system from China's CodeWing Network Technology Company. A code issue vulnerability exists in MWCMS version 1.0.0, which originates from an unrestricted file upload vulnerability in the upfile parameter of the /uploadeditor.html?action=uploadimage page...