Back to search
CVE-2017-11466
Published: Jul 20, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Arbitrary file upload vulnerability in com/dotmarketing/servlets/AjaxFileUploadServlet.class in dotCMS 4.1.1 allows remote authenticated administrators to upload .jsp files to arbitrary locations via directory traversal sequences in the fieldName parameter to servlets/ajax_file_upload. This results in arbitrary code execution by requesting the .jsp file at a /assets URI.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://seclists.org/fulldisclosure/2017/Jul/33
x_refsource_MISC
https://github.com/dotCMS/core/issues/12131
x_refsource_MISC
https://packetstormsecurity.com/files/143383/dotcms411-shell.txt
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now