Skip to content

Instantly share code, notes, and snippets.

@CoinIsMoney
Last active November 18, 2024 12:40
Show Gist options
  • Save CoinIsMoney/ec863c35dfd05c7deea2afea11bf2446 to your computer and use it in GitHub Desktop.
Save CoinIsMoney/ec863c35dfd05c7deea2afea11bf2446 to your computer and use it in GitHub Desktop.
[CVE ID]
CVE-2024-48070
[Vendor of Product]
Weaver Software Co., Ltd
[PRODUCT]
E-cology
[VERSION]
9.*
[Vulnerability Type]
Improper Control of Generation of Code
[DESCRIPTION]
A vulnerability was found in Weaver E-cology, attackers construct special requests to insert remote malicious code and to trigger malicious code execution, and control server privileges.
[REFERENCES]
https://www.weaver.com.cn/cs/securityDownload.html
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment