漏洞描述
Cisco Unified Contact Center Express(Unified CCX)是美国思科(Cisco)公司的一款统一通信解决方案中的客户关系管理组件。Document Management是其中的一个文档管理应用。 Cisco Unified CCX的Document Management组件中存在安全漏洞,该漏洞源于程序没有正确验证参数。远程攻击者可通过发送特制的HTTP请求利用该漏洞上传任意到任意路径名。
Cisco Unified Contact Center Express 任意文件上传漏洞
PoC代码
暂无相关漏洞推荐
- Cisco Any Router and Switch 默认口令漏洞
- POC CVE-2025-68613: n8n - Remote Code Execution via Expression Injection
- POC wp-contact-form-7-fpd: WordPress Contact Form 7 - Full Path Disclosure
- POC wp-contact-form-fpd: WordPress Contact Form - Full Path Disclosure
- 金和OA AjaxForCenterBudgetDecompose.ashx SQL注入漏洞
- POC CVE-2024-31223: Fides Privacy Center ≤ 2.39.1 - Server-Side URL Disclosure
- POC CVE-2024-20404: Cisco Finesse - Server-Side Request Forgery (SSRF)
- POC CVE-2024-0799: Arcserve Unified Data Protection - Authentication Bypass
- POC CVE-2024-0801: Arcserve Unified Data Protection - Unauthenticated DoS in ASNative.dll
- (CVE-2025-4665) Contact Form CFDB7 SQL注入与不安全反序列化漏洞
- Atlassian Jira Software Data Center And Server 需授权 路径遍历漏洞
- (CVE-2015-10137)WordPress Contact Form With File Upload插件任意文件上传漏洞
- Cisco IOS XE Software 命令注入漏洞