Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

samedi 15 mai 2021

LAOBANCMS 2.0 unrestricted upload [CVE-2020-18166]

A vulnerability classified as critical was found in LAOBANCMS 2.0. This vulnerability affects an unknown code block of the file admin/wenjian.php?wj=../templets/pc. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 24


Événements SSI