CNNVD-202602-1349 Information

CNNVD ID

CNNVD-202602-1349

Related CVE

CVE-2026-2226

• CNNVD Published: 2026-02-09

Description (Chinese)

DouPHP是中国DouPHP公司的一个企业建站系统。 DouPHP 1.9及之前版本存在代码问题漏洞，该漏洞源于对文件/admin/file.php中参数sql_filename的错误操作，可能导致任意文件上传。

Description (English)

DouPHP is an enterprise construction system of DouPHP in China. There is a code gap in DouPHP 1.9 and previous versions, which stems from an error in the sql filename of the parameter in file/admin/file.php, which could lead to any upload.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

DouPHP

Published

2026-02-09

Last Modified

2026-02-24

References

https://vuldb.com/?id.344943 https://github.com/pengchengwangli/MyCVE/issues/2 https://vuldb.com/?submit.753441 https://vuldb.com/?ctiid.344943 https://access.redhat.com/security/cve/cve-2026-2226