RULE(RULE ID:333633)

Rule General Information
Release Date: 2021-06-03
Rule Name: 1039Jiaxiaotong Arbitrary File Upload Vulnerability
Severity:
CVE ID:
Rule Protection Details
Description: Beijing 1039 Technology Development Co., Ltd. is a company focusing on driving school management system, driving school mobile office system, driving school management software, driving school admissions applet development, etc., providing driving school management system solutions without blind spots. The backend editor of Beijing 1039 Technology Development Co., Ltd. driving school management system has an arbitrary file upload vulnerability. Attackers can learn the webshell path by capturing packets, causing the server to be compromised.
Impact: An attacker could exploit this vulnerability to have unspecified effect.
Affected OS: Windows, Linux, Others
Reference:
Solutions
Please contact the software vendor to update the software patch.