2022-03-18 10:55:59
mitre
PUBLISHED
An attacker can upload or transfer files of dangerous types to the OpenDocMan 1.4.4 portal via add.php using MIME-bypass, which may be automatically processed within the products environment or lead to arbitrary code execution.