ГлавнаяУязвимости → CVE-2024-10201
8.8высокая

CVE-2024-10201

Описание

Administrative Management System from Wellchoose does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload and execute webshells.

Затрагиваемое ПО
Wellchoose Administrative management system
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.twcert.org.tw/en/cp-139-8161-b8a6d-2.htmlhttps://www.twcert.org.tw/tw/cp-132-8160-756b6-1.html