2 matches found
CVE-2020-23083
Unrestricted File Upload in JEECG v4.0 and earlier allows remote attackers to execute arbitrary code or gain privileges by uploading a crafted file to the component "jeecgFormDemoController.do?commonUpload"...
CVE-2020-23083
The CVE-2020-23083 entry affects JEECG v4.0 and earlier, where an unrestricted file upload to the component jeecgFormDemoController.do?commonUpload allows remote attackers to execute arbitrary code or gain privileges. Root cause is unrestricted file upload in JEECG’s form demo upload endpoint; no...