yunsle

期待开源，佩服动手能力

In hdcms 5.7, attacker can upload evil file via /js/hdjs/package/webuploader/server/fileupload.php, which leads to Arbitrary Code Execution vulnerability.   

情况标题所述，收到转账后进入我的->消息，点击到账信息想看详情时闪退