logo
Vulnerability feed
Contributors
About
Blog
CONTRIBUTE

Vulnerability

warn

CVE-2022-36431

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2022-36431

Description:
An arbitrary file upload vulnerability in Rocket TRUfusion Enterprise before 7.9.6.1 allows unauthenticated attackers to execute arbitrary code via a crafted JSP file. Issue fixed in version 7.9.6.1.
Last updated date:
12/05/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
12/05/2022
Reference url to background

https://www.synacktiv.com/sites/default/files/2022-11/trufusion_enterprise_unauthenticated_arbitrary_file_write.pdf

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy