6 matches found
jpress 代码问题漏洞
Jpress is Jpress team of a set of blogging platform developed using the Java language . A security vulnerability exists in jpress that stems from vulnerability to RCE attacks via io.jpress.web.admin. Attackers can exploit this vulnerability by uploading templates and injecting malicious code...
Jpress Access Control Error Vulnerability
Jpress is a set of blogging platforms developed by the Jpress team using the Java language. an access control error vulnerability exists in Jpress, which stems from the product allowing the io.jpress.web.admin.AddonController::doUploadAndInstall function to execute commands. No detailed...
CVE-2021-45807
jpress v4.2.0 is vulnerable to command execution via io.jpress.web.admin.AddonController::doUploadAndInstall...
CVE-2021-45807
jpress v4.2.0 is vulnerable to command execution via io.jpress.web.admin.AddonController::doUploadAndInstall...
Command injection
jpress v4.2.0 is vulnerable to command execution via io.jpress.web.admin.AddonController::doUploadAndInstall...
CVE-2021-45807
jpress v4.2.0 is vulnerable to command execution via io.jpress.web.admin.AddonController::doUploadAndInstall...