| Description: | | Weaver E-Office is a lightweight OA product designed for small and medium-sized enterprises. It features simple deployment, quick launch, and low maintenance costs. It provides ready-to-use functions such as approval, attendance, document management, and project management. There is an arbitrary file upload vulnerability in the upload.php of Weaver E-Office. Attackers can exploit this vulnerability to upload malicious files (such as trojans, malicious scripts, etc.), thereby gaining control of the server, tampering with website content, stealing sensitive data, or launching further network attacks. |