Security Advisory

CVE-2020-26806

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-31 16:13:31

Last updated 2024-08-04 16:03:22

Assigner mitre

State PUBLISHED

Description

admin/file.do in ObjectPlanet Opinio before 7.15 allows Unrestricted File Upload of executable JSP files, resulting in remote code execution, because filePath can have directory traversal and fileContent can be valid JSP code.

← Browse all CVEs View on cve.org ↗