CNNVD-202602-378 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-378
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
GUnet OpenEclass是希腊GUnet公司的一个学习管理系统。 GUnet OpenEclass 1.7.3版本存在代码问题漏洞,该漏洞源于允许绕过文件扩展名限制上传PHP文件,可能导致远程代码执行。
Description (English)
GUnet OpenEclass is a learning management system for the Greek company GUnet. GUnet OpenEclass Version 1.7.3 has a code problem loophole, which stems from allowing access to file extension limits for uploading PHP files, which may result in remote code execution.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
GUnet
Published
2026-02-03
Last Modified
2026-02-24
References
https://download.openeclass.org/files/docs/1.7/CHANGES.txt https://www.exploit-db.com/exploits/48163 https://www.openeclass.org/ https://www.vulncheck.com/advisories/gunet-openeclass-e-learning-platform-file-upload-extension-bypass
Share on: