|
|
|||
| Rule General Information |
|---|
| Release Date: | 2022-07-30 | |
| Rule Name: | Whir OA File Upload Vulnerability | |
| Severity: | High | |
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Whir OA is a collaborative office automation software developed by Wanhu Software Technology Co., LTD. Whir OA officeserverservlet has a file upload vulnerability, which is caused by inadequate verification of uploaded files, allowing attackers to upload malicious files to the server of the application, and then execute malicious code. Finally get server permissions. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |