ГлавнаяУязвимости → CVE-2026-10072
7.2высокая

CVE-2026-10072

Описание

DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.

CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.twcert.org.tw/en/cp-139-10946-1127f-2.htmlhttps://www.twcert.org.tw/tw/cp-132-10943-8fb00-1.html