2 matches found
CVE-2019-8433
JTBCPHP 3.0.1.8 allows Arbitrary File Upload via the console//console/file/manage.php?type=list URI, as demonstrated by a .php file...
CVE-2019-8433
CVE-2019-8433 affects JTBC(PHP) 3.0.1.8, allowing arbitrary file upload via the console/#/console/file/manage.php?type=list URI, demonstrated by uploading a .php file. This indicates a flaw in file handling/validation on that endpoint. The available connected documents confirm the vulnerability d...