We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
UCMS_v1.6.0 Arbitrary file upload vulnerability
Vulnerability type:
V 1.6.0
Recurrence environment:
Windows 10
phpstudy
Vulnerability description:
The vulnerability lies in /ucms-v1.6/ucms/sadmin/file PHP file, the file suffix on is not verified, so any file can be uploaded
Loophole recurrence: