File upload vulnerability in BEESCMS backend up***.php page

BEESCMS is a scalable content management system CMS based on PHP and MySQL. A file upload vulnerability exists in the BEESCMS backend up.php page. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...

File Upload Vulnerability in Multiple Versions of Intimate Home Care Intimate Cat (imcat)

Intimate Cat imcat is a general-purpose website system designed in PHP+MySQL architecture. File upload vulnerability exists in several versions of Sticky Home Sticky Cat imcat. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...

Remote Command Execution Vulnerability in Hard Disk Recorder of Zhejiang YUV Technology Co.

Founded in 2011, Zhejiang Yusi Technology Co., Ltd Yusi is a global solution provider for public safety and intelligent transportation. Zhejiang YUVE Technology Co., Ltd. hard disk recorders exist remote command execution vulnerability, an attacker can use the vulnerability to execute system...

File upload vulnerability in PopojiCMS ad***_th***.php file

PopojiCMS is a content management system. A file upload vulnerability exists in the PopojiCMS adth.php file. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...

PHP-Fusion 'Edit Profile' Arbitrary File Upload Vulnerability

PHP-Fusion is a lightweight open source content management system . It uses mySQL database to store site content and provide a simple , comprehensive back-end management system . PHP-Fusion includes most of the CMS system has the functionality . PHP-Fusion 'Edit Profile' has an arbitrary file...

Hubei Tao code thousand dimensional information technology limited company gold micro cell phone mall system file upload vulnerability

Jinwei mobile mall system is suitable for micro-business customers with public number, imitating the page layout of the hand Tao, support embedded video playback. Support customized model specifications, the main specifications support attached pictures, each subdivided model support inventory...

SchoolCMS has a file upload vulnerability

SchoolCMS is a school teaching management system based on PHP+MySQL. SchoolCMS v2.3.1 suffers from an arbitrary file upload vulnerability. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...

qdPM < 9.1 - Remote Code Execution

!/usr/bin/python ------------------------------------------------------------------------------------- Title: qdPM Webshell Upload + RCE Exploit qdPMv9.1 and below CVE-2020-7246 Author: Tobin Shields @TobinShields Description: This is an exploit to automatically upload a PHP web shell to the qdPM...

Arbitrary file upload vulnerability in the al***.cl***.php page of the frontend of UQCMS cloud business system

UQCMS cloud business system is the program using PHP + MYSQL template using smarty template, front and back end is separated from a B2B2C e-commerce software. UQCMS cloud business system front al.cl.php page exists arbitrary file upload vulnerability. An attacker can exploit the vulnerability to...

Zhejiang Yusi industry general video management platform file upload vulnerability

Video surveillance management platform is a set of industry general video management platform developed by Zhejiang YUVAD. A file upload vulnerability exists in Zhejiang YUVAD's industry general video management platform. An attacker can use the vulnerability to upload a webshell and gain server...

Wordpress plugin contact-form remote file upload vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. contact-form-plugin is a contact form plugin used in it. Wordpress plugin contact-form has a remote file upload vulnerability. Allows ...

File upload vulnerability in Up***.php file of Bitter Chrysanthemum OA Office System

Bitter Chrysanthemum OA office system is suitable for small and medium-sized enterprises, general-purpose collaborative OA management software, incorporating Bitter Chrysanthemum OA's rich experience in management software development for a long time and advanced technology, the system adopts the...

File upload vulnerability in MyuCMS backend Co***.php page

MyuCMS open source content management system developed using ThinkPHP community mall. A file upload vulnerability exists in the Co.php page of MyuCMS backend. Attackers can exploit the vulnerability to upload webshell and gain server privileges...

File Upload Vulnerability in LJCMS of Beijing Liangjing Zhicheng Technology Co.

LJCMS is a free and open source content management system. A file upload vulnerability exists in LJCMS by Beijing Liangjingzhicheng Technology Co. It allows attackers to upload webshell and gain server privileges...

TPshop open source mall file upload vulnerabilities exist in the foreground

TPshop open source mall is developed with the latest version of ThinkPHP shop mall. TPshop open source mall front-end file upload vulnerability. Allow attackers to upload webshell, get server privileges...

File upload vulnerability in Sy***.cl***.php file in XYHCMS backend

XYHCMS Xingyunhai CMS is a completely open source CMS content management system. XYHCMS backend Sy.cl.php file file upload vulnerability. Allow attackers to upload webshell and gain server privileges...

File upload vulnerability in the background of Guojiz Web Site Navigation System V2.3.5

Guojiz website navigation system is a navigation website source code developed by PHP+MySQL with MYSQL database. A file upload vulnerability exists in the backend of Guojiz URL Navigation System V2.3.5. An attacker can exploit the vulnerability to upload a webshell and gain server privileges...

File Upload Vulnerability in Multimedia Management Platform of Beijing Tecbeth Technology Co.

Ltd. is a B2B e-commerce platform for digital products, pioneering the information service model. A file upload vulnerability exists in the multimedia management platform of Beijing Tekbest Technology Co. The vulnerability allows an attacker to upload a webshell and gain server privileges...

File Upload Vulnerability in Far Autumn Medical Training Enrollment System v1.0

Far Autumn Medical Online Examination System adopts the universal test bank management software, applicable to all levels and types of medical schools and hospitals, the content contains the three basic exams for medical and nursing personnel, title exams, licensing exams, academic exams, trainin...

Far Autumn Medical Training Enrollment System v1.0 File Upload Vulnerability in Frontend

Far Autumn Medical Online Examination System adopts the universal test bank management software, applicable to all levels and types of medical schools and hospitals, the content contains the three basic exams for medical and nursing personnel, title exams, licensing exams, academic exams, trainin...