Dokmee ECM 7.4.6 allows remote code... CVE-2023-47261

- AV AC AU C I A
发布: 2023-12-14
修订: 2023-12-19

Dokmee ECM 7.4.6 allows remote code execution because the response to a GettingStarted/SaveSQLConnectionAsync /#/gettingstarted request contains a connection string for privileged SQL Server database access, and xp_cmdshell can be enabled.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息