An arbitrary file upload vulnerability in the nccloud.web.arcp.taskmonitor.action.ArcpUploadAction.doAction() method of YonBIP v3_23.05 allows attackers to execute arbitrary code via uploading a crafted file.
References
Link | Resource |
---|---|
http://yonbip.com | Broken Link |
https://github.com/cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc/blob/main/cxcxcxcxcxc/about/51928.txt | Broken Link |
https://www.yonyou.com/ | Product |
http://yonbip.com | Broken Link |
https://github.com/cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc/blob/main/cxcxcxcxcxc/about/51928.txt | Broken Link |
https://www.yonyou.com/ | Product |
Configurations
History
21 Nov 2024, 08:38
Type | Values Removed | Values Added |
---|---|---|
References | () http://yonbip.com - Broken Link | |
References | () https://github.com/cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc/blob/main/cxcxcxcxcxc/about/51928.txt - Broken Link | |
References | () https://www.yonyou.com/ - Product |
26 Jan 2024, 17:33
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-434 | |
References | () http://yonbip.com - Broken Link | |
References | () https://www.yonyou.com/ - Product | |
References | () https://github.com/cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc/blob/main/cxcxcxcxcxc/about/51928.txt - Broken Link | |
First Time |
Yonyou yonbip
Yonyou |
|
CPE | cpe:2.3:a:yonyou:yonbip:3_23.05:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
20 Jan 2024, 02:58
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-20 01:15
Updated : 2024-11-21 08:38
NVD link : CVE-2023-51928
Mitre link : CVE-2023-51928
CVE.ORG link : CVE-2023-51928
JSON object : View
Products Affected
yonyou
- yonbip
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type