← Back to CVE List
CVE-2018-10469
Published:
2018-04-27T04:29Z
Last Modified:
2024-11-21T03:41Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
b3log Symphony (aka Sym) 2.6.0 allows remote attackers to upload and execute arbitrary JSP files via the name[] parameter to the /upload URI. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt