Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-GH24-C683-79R2
HistoryApr 28, 2023 - 9:30 p.m.

Duplicate Advisory: Arbitrary code execution in jfinal CMS

2023-04-2821:30:19
GitHub Advisory Database
github.com
6
duplicate advisory
command execution vulnerability
actionenter class
json file
ueditor route
security issue
JSON

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-8qhm-ch8h-xgjr. This link is maintained to preserve external references.

Original Description

Command execution vulnerability in the ActionEnter Class ins jfinal CMS version 5.1.0 allows attackers to execute arbitrary code via a created json file to the ueditor route.

Affected configurations

Vulners
Node
jfinaljfinalRange5.1.0
CPENameOperatorVersion
com.jflyfox:jflyfox_jfinalle5.1.0

Related

osv 1
cvelist 1
nvd 1
cve 1
osv
osv
Arbitrary code execution in jfinal CMS
2023-04-28 21:30:19
cvelist
cvelist
CVE-2023-26812
1976-01-01 00:00:00
nvd
nvd
CVE-2023-26812
2023-04-28 20:15:13
cve
cve
CVE-2023-26812
2023-04-28 20:15:13
JSON
Related for GHSA-GH24-C683-79R2
osv1cvelist1nvd1cve1