| Description: | | Weaver E-Mobile is a mobile office platform launched by Weaver Company. It extends applications such as official documents, processes, address books, and schedules from the enterprise OA system to mobile terminals. It supports a variety of smart devices and features ease of use, adaptability, maturity, integration, security, platformization, superior performance, minimal development, and one-time development for multi-platform deployment. It can meet the needs of corporate executives and personnel with mobile office requirements to handle work affairs anytime and anywhere. There is an arbitrary file upload vulnerability in the lang2sql interface of Weaver E-Mobile. Attackers can exploit this vulnerability to upload malicious files (such as trojans, malicious scripts, etc.), thereby gaining control of the server, tampering with website content, stealing sensitive data, or launching further network attacks. |