Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:15 a.m.8 views

CVE-2019-11445

OpenKM 6.3.2 through 6.3.7 allows an attacker to upload a malicious JSP file into the /okm:root directories and move that file to the home directory of the site, via frontend/FileUpload and admin/repositoryexport.jsp. This is achieved by interfering with the Filesystem path control in the admin's...

9CVSS8AI score0.14478EPSS
Exploits1References1
NVD
NVD
added 2019/04/22 11:29 a.m.21 views

CVE-2019-11445

OpenKM 6.3.2 through 6.3.7 allows an attacker to upload a malicious JSP file into the /okm:root directories and move that file to the home directory of the site, via frontend/FileUpload and admin/repositoryexport.jsp. This is achieved by interfering with the Filesystem path control in the admin's...

9CVSS7.5AI score0.14478EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/04/22 4:0 a.m.21 views

CVE-2019-11445

OpenKM 6.3.2 through 6.3.7 allows an attacker to upload a malicious JSP file into the /okm:root directories and move that file to the home directory of the site, via frontend/FileUpload and admin/repositoryexport.jsp. This is achieved by interfering with the Filesystem path control in the admin's...

7.5AI score0.14478EPSS
Exploits1References2
CVE
CVE
added 2019/04/22 4:0 a.m.54 views

CVE-2019-11445

OpenKM 6.3.2–6.3.7 is affected: an attacker can upload a malicious JSP into /okm:root and move it to the site home through frontend/FileUpload and admin/repository_export.jsp by exploiting improper Filesystem path control in the Admin Export field, enabling remote code execution with root privile...

9CVSS7.5AI score0.14478EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder