CVE-2024-42676 Information

Description

File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPostBack component

Reference

https://github.com/WarmBrew/web_vul/blob/main/HZ-cve/HZupload.md