Exploit for asp platform in category web applications
GAT-Ship Web Module before the current version (1.40) suffers from a vulnerability allowing authenticated attackers to
upload any file type to the server via the "Documents" area. This vulnerability is related to "uploadDocFile.aspx"
Fix:
Upgrade to 1.40
# 0day.today [2019-04-28] #