key141 issues

Repositories
Issues
Comments

Results 1 issues of


                                            key141

About a file upload vulnerability

[CRMEB vulnerability report.docx](https://github.com/crmeb/CRMEB/files/11227118/CRMEB.vulnerability.report.docx) The defect code is in the $filename variable in the videoUpload function in the \crmeb\app\services\system\attachment\SystemAttachmentServices.php file, that is, $filename = $all_dir . '/' . $data['filename'] . '__...