2 matches found
CVE-2026-36760
creationtimestamp| type| source ---|---|--- 2026-04-30 19:46:40+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqewko3au2t 2026-04-30 19:47:06+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqexdt5sx2c 2026-04-30 20:45:24+00:00| seen|...
CVE-2026-36760
An issue in the fileMd5 parameter in the /a/file/upload endpoint of JeeSite v5.15.1 allows authenticated attackers with file upload permissions to execute a path traversal and write arbitrary files with whitelisted suffixes to arbitrary filesystem locations while chunked upload is enabled...