漏洞描述
Visual Mining NetCharts Server是美国Visual Mining公司的一套数据可视化工具。该工具支持将数据以图表、图形、报告等形式生成。 Visual Mining NetCharts Server中存在任意文件上传漏洞。远程攻击者可利用该漏洞向受影响计算机上传任意文件,在Web服务器进程上下文中执行任意代码。
Visual Mining NetCharts Server 任意文件上传漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2020-16248: Prometheus Blackbox Exporter - Server-Side Request Forgery (SSRF)
- POC openvpn-as-config-exposure: OpenVPN Access Server - Configuration Exposure
- POC CVE-2020-9314: Oracle iPlanet Web Server 7.0.x - Image Injection
- POC CVE-2025-36845: Eveo URVE Web Manager - Server-Side Request Forgery
- POC CVE-2025-56520: Dify v1.6.0 - Server-Side Request Forgery
- POC CVE-2026-21859: Mailpit < 1.28.3 - Server-Side Request Forgery
- POC vscode-settings: Visual Studio Code Settings - Credential Exposure
- POC firebase-fcm-server-key-disclosure: Firebase Cloud Messaging - Server Key Disclosure
- POC ezservermonitor-exposure: eZ Server Monitor - Exposure
- 天锐绿盾审批系统 fileServer 信息泄露漏洞
- POC CVE-2020-9039: Couchbase Server - Broken Access Control
- POC vscode-mcp-json: Visual Studio Code MCP Configuration ("mcp.json") Exposure
- POC wp-jetpack-ssrf: Wordpress Jetpack plugin - Server Side Request Forgery