08 Oct 2019
Vulnérabilité CVE-2019-17352 CVE Vulnerability
In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile() function: one can upload any type of file. For example, a .jsp file may be stored and almost immediately deleted, but this deletion step does not occur for certain exceptions. (CVSS:0.0) (Last Update:2019-10-08)
Vulnerability Details : In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile() function: one can upload any type of file. For example, a .jsp file may be stored and almost immediately deleted, but this deletion step does not occur for certain exceptions. Publish Date : 2019-10-08 Last Update Date : 2019-10-08 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-17352
- References For CVE-2019-17352
| ||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-17352There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |