All Products
Search
Document Center

[Vulnerability notice] File upload vulnerability in HiShop

Last Updated: Apr 18, 2018

Vulnerability description

HiShop is a popular website content system. The code logic of HiShop in earlier versions is lax. As a result, attackers can upload any file and further intrude the website.

How to fix

Upgrade HiShop to the latest version.

Note: To avoid data loss, back up data or create an ECS disk snapshot before the upgrade.