Parameter manipulation can bypass authentication to cause file upload and execution. This will execute the remote code. This issue affects: Raonwiz DEXT5Editor versions prior to...
9.8CVSS
9.7AI Score
0.008EPSS
handler/upload_handler.jsp in DEXT5 Editor through 3.5.1402961 allows an attacker to download arbitrary files via the savefilepath...
7.5CVSS
7.5AI Score
0.004EPSS