zzskzy Warehouse Refinement Management System Unrestricted File Upload Vulnerability in AcceptZip.ashx

Vulnerability

A critical vulnerability allowing unrestricted file uploads has been identified in zzskzy Warehouse Refinement Management System version 3.1. The issue arises in the ProcessRequest function of the AcceptZip.ashx file, where manipulation of the 'file' argument enables the upload of potentially malicious files. This vulnerability can be exploited remotely and may lead to arbitrary file execution or other malicious activities.

Impact

Exploitation of this vulnerability allows for arbitrary file uploads, which could be executed on the server, leading to remote code execution.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.6

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

zzskzy Warehouse Refinement Management System Unrestricted File Upload Vulnerability in AcceptZip.ashx

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating