An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. admin/admin/fileUploadAction_fileUpload.action allows arbitrary file upload, as demonstrated by a .jsp file with the image/jpeg content type.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-07-20T00:00:00Z

Updated: 2024-09-17T01:05:36.171Z

Reserved: 2018-07-19T00:00:00Z

Link: CVE-2018-14441

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-07-20T00:29:00.597

Modified: 2024-11-21T03:49:03.813

Link: CVE-2018-14441

cve-icon Redhat

No data.