Rule Name:Yonyou NC Cloud Interface has Arbitrary File Upload Vulnerability
Severity:high
CVE ID:
Descripiton:
Yonyou NC Cloud harnesses the next-generation technologies to create an integrated platform that enables the digitalization of enterprise management. Yonyou NC has arbitrary file upload vulnerability. Attackers can upload arbitrary file through aim/equipmap/accept.jsp interface. This rule supports to defend the A6: Vulnerable and Outdated Components of OWASP Top 10 - 2021. Other reference:None