CVE-2019-9613 in OFCMSinformación

Resumen

por MITRE

An issue was discovered in OFCMS before 1.1.3. Remote attackers can execute arbitrary code because blocking of .jsp and .jspx files does not consider (for example) file.jsp::$DATA to the admin/ueditor/uploadVideo URI.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservar

2019-03-06

Moderación

aceptado

Artículo

VDB-131407

CPE

listo

EPSS

0.02708

KEV

no

Actividades

muy bajo

Fuentes

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!