CVE-2020-26806

CVE-2020-26806

admin/file.do in ObjectPlanet Opinio before 7.15 allows Unrestricted File Upload of executable JSP files, resulting in remote code execution, because filePath can have directory traversal and fileContent can be valid JSP code.

Source: CVE-2020-26806

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다