dotCMS arbitrary file upload vulnerability (CNVD-2019-21130)
dotCMS is a content management system CMS from the American company dotCMS. An arbitrary file upload vulnerability exists in the Push Publishing feature in the administration panel of dotCMS 3.7.1 and prior versions, which originates when extracting the 'Bundle' tar.gz archive file uploaded to th...