An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. admin/admin/fileUploadAction_fileUpload.action allows arbitrary file upload, as demonstrated by a .jsp file with the image/jpeg content type.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/cckevincyh/CompanyWebsite/issues/4 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-07-20T00:00:00Z
Updated: 2024-09-17T01:05:36.171Z
Reserved: 2018-07-19T00:00:00Z
Link: CVE-2018-14441
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-07-20T00:29:00.597
Modified: 2024-11-21T03:49:03.813
Link: CVE-2018-14441
Redhat
No data.