|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-09-03 | |
| Rule Name: | Eqccd OA UploadFile Arbitrary File Upload Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Eqccd OA system is an office automation solution based on cloud computing, aiming to improve the office efficiency and collaboration ability of enterprises. Eqccd OA UploadFile interface has an arbitrary file upload vulnerability, which allows attackers to upload webshell Trojan to obtain server permissions. | |
| Impact: | Attackers can upload viruses, Trojans, WebShell, other malicious scripts or pictures containing scripts to the server, and attackers can use these files for subsequent attacks. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |