An arbitrary file upload vulnerability in the avatar upload function of vaeThink v1.0.1 allows malicious users to open a webshell via changing uploaded file suffixes to ".php".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vaethink vaethink 1.0.1 |