Описание
Huang Yaoshi Pharmaceutical Management Software through 16.0 allows arbitrary file upload via a .asp filename in the fileName element of the UploadFile element in a SOAP request to /XSDService.asmx.
Ссылки
EPSS
Процентиль: 39%
0.00177
Низкий
10 Critical
CVSS3
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 10
github
около 1 года назад
Huang Yaoshi Pharmaceutical Management Software through 16.0 allows arbitrary file upload via a .asp filename in the fileName element of the UploadFile element in a SOAP request to /XSDService.asmx.
EPSS
Процентиль: 39%
0.00177
Низкий
10 Critical
CVSS3
Дефекты
CWE-434