admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 18:27:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
GobyVuls/yongyou_GRP-U8_U8App_Proxy_Arbitrary_file_upload_vulnerability.md
Goby 3025991a2e
Create yongyou_GRP-U8_U8App_Proxy_Arbitrary_file_upload_vulnerability.md 
add yongyou GRP-U8 U8AppProxy Arbitrary file upload vulnerability
2023-06-09 17:58:19 +08:00

1.3 KiB
Raw Blame History

yongyou GRP-U8 U8AppProxy Arbitrary file upload vulnerability

Vulnerability yongyou GRP-U8 U8AppProxy Arbitrary file upload vulnerability
Chinese name 用友GRP-U8 软件 U8AppProxy 任意文件上传漏洞
CVSS core 9.0
FOFA Query (click to view the results directly) body="window.location.replace("login.jsp?up=1")" || body="GRP-U8"
Number of assets affected 1308
Description Yonyou GRP-U8 management software is a new generation of products launched by UFIDA focusing on national e-government affairs and based on cloud computing technology. It is the most professional government financial management software in the field of administrative affairs and finance in my country. UFIDA GRP-U8 management software U8AppProxy has an arbitrary file upload vulnerability, an attacker can upload a webshell to obtain server permissions.
Impact UFIDA GRP-U8 management software U8AppProxy has an arbitrary file upload vulnerability, an attacker can upload a webshell to obtain server permissions.