Arbitrary file upload in Service... CVE-2021-28023

7.5 AV AC AU C I A
发布: 2021-11-08
修订: 2024-11-21

Arbitrary file upload in Service import feature in ServiceTonic Helpdesk software version < 9.0.35937 allows a malicious user to execute JSP code by uploading a zip that extracts files in relative paths.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息