CVE-2026-13547 | Hanwang e-Face General Management Platform 6.3.5.4 upload.do File unrestricted upload

Inserito da Angelo Barbosa | Giu 28, 2026 | CVE

A vulnerability described as critical has been identified in Hanwang e-Face General Management Platform 6.3.5.4. This issue affects some unknown processing of the file /manage/resourceUpload/upload.do. Executing a manipulation of the argument File can lead to unrestricted upload.

The identification of this vulnerability is CVE-2026-13547. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-13547 | Hanwang e-Face General Management Platform 6.3.5.4 upload.do File unrestricted upload

Post correlati

CVE-2023-22655 | Intel Xeon SGX/TDX protection mechanism (intel-sa-00960)

CVE-2025-68337 | Linux Kernel up to 6.12.61/6.17.11/6.18.0 fs/jbd2/transaction.c jbd2_journal_get_create_access allocation of resources

CVE-2026-32271 | Craft CMS up to 4.10.2/5.5.4 Commerce TotalRevenue Widget unserialize sql injection

CVE-2025-0571 | Sante PACS Server 3.0.4/3.3.7 DCM File Parser denial of service