Jpress is a blogging platform developed by the Jpress team using the Java language. v4.2.0 of Jpress is vulnerable to a file upload vulnerability, which stems from the fact that the software allows users to register an account by default and upload arbitrary files to the server. An attacker could exploit this vulnerability to upload malicious files and remotely execute arbitrary code.
CPE | Name | Operator | Version |
---|---|---|---|
jpress jpress | eq | 4.2.0 |