CVE-2019-10012
CVE-2019-10012 affects Jenzabar JICS (Internet Campus Solution) prior to version 9. An attacker can upload and execute arbitrary .aspx code by placing it in a ZIP archive and leveraging the MoxieManager (for .NET) plugin before 2.1.4 in the installation’s ICS\ICS.NET\ICSFileServer directory. The ...