CVE-2023-1501

A vulnerability, which was classified as critical, was found in RockOA 2.3.2. This affects the function runAction of the file acloudCosAction.php.SQL. The manipulation of the argument fileid leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-223401 was assigned to this vulnerability.
CVSS

No CVSS.

Advertisement

NeevaHost hosting service

Configurations

No configuration.

Information

Published : 2023-03-19 13:15

Updated : 2023-03-19 19:46


NVD link : CVE-2023-1501

Mitre link : CVE-2023-1501


JSON object : View

CWE
CWE-434

Unrestricted Upload of File with Dangerous Type

Advertisement

dedicated server usa

Products Affected

No product.