Описание
A vulnerability was found in jerryshensjf JPACookieShop 蛋糕商城JPA版 1.0. It has been classified as critical. Affected is the function addGoods of the file GoodsController.java. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely.
EPSS
Процентиль: 10%
0.00038
Низкий
6.3 Medium
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 6.3
github
около 2 месяцев назад
A vulnerability was found in jerryshensjf JPACookieShop 蛋糕商城JPA版 1.0. It has been classified as critical. Affected is the function addGoods of the file GoodsController.java. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely.
EPSS
Процентиль: 10%
0.00038
Низкий
6.3 Medium
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-284