MeterSphere任意文件上传漏洞(CVE-2021-45790)

漏洞描述

PoC代码

暂无

相关漏洞推荐

• CVE-2023-25573: Metersphere 任意文件读取漏洞 POC

  2025-09-01 | Metersphere
  Metersphere file 接口存在任意文件读取漏洞，攻击者通过接口可以获取敏感文件压缩包 FaFo: body="Metersphere"

• metersphere-plugincontroller-rce: MeterSphere PluginController Pre-auth RCE POC

  2025-09-01 | MeterSphere PluginController
  FaFo: body="Metersphere"

• CVE-2022-23544: MeterSphere < 2.5.0 SSRF POC

  2025-08-01 | MeterSphere
  MeterSphere is a one-stop open source continuous testing platform, covering test management, interfa...

• ShowDoc /server/index.php?s=/api/adminUpdate/download 文件上传漏洞（CVE-2021-36440） 无POC

  2025-09-12 | ShowDoc
  ShowDoc 2.9.5版本存在一个高危的文件上传漏洞(CVE-2021-36440)，该漏洞源于系统未能对上传文件的类型进行充分验证。攻击者可以绕过安全限制上传任意类型的危险文件，包括但不限于PH...

• CVE-2021-1497: Cisco HyperFlex HX Data Platform - Remote Command Execution POC

  2025-09-01 | Cisco HyperFlex HX Data Platform
  Cisco HyperFlex HX contains multiple vulnerabilities in the web-based management interface that coul...