Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in the RoboHelpServer Servlet (robohelp/server) in Adobe RoboHelp Server 8 allows remote attackers to execute arbitrary code by uploading a Java Archive (.jsp) file during a PUBLISH action, then accessing it via a direct request to the file in the robohelp/robo/reserved/web directory under its sessionid subdirectory, as demonstrated by the vd_adobe module in VulnDisco Pack Professional 8.7 through 8.11.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Adobe RoboHelp Server不受限文件上传漏洞
Vulnerability Description
Adobe RoboHelp是美国奥多比(Adobe)公司的一套专业创作工具。该工具可用于开发帮助系统、电子教学内容、知识库等。 Adobe RoboHelp Server 8版本中的RoboHelpServer Servlet (robohelp/server)中存在不受限文件上传漏洞。远程攻击者可在执行PUBLISH操作期间通过上传Java Archive (.jsp)文件执行任意代码,并借助对robohelp/robo/reserved/web目录下sessionid子目录中的文件的直接请求访问该文
CVSS Information
N/A
Vulnerability Type
N/A