Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Chatopera Subscribe
Filtered by product Cosin
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-6503 1 Chatopera 1 Cosin 2019-02-15 7.5 HIGH 9.8 CRITICAL
There is a deserialization vulnerability in Chatopera cosin v3.10.0. An attacker can execute commands during server-side deserialization by uploading maliciously constructed files. This is related to the TemplateController.java impsave method and the MainUtils toObject method.