Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in ${"freemarker.template.utility.Execute"?new() of UJCMS Jspxcms v10.2.0 allows attackers to execute arbitrary commands via uploading malicious files.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Jspxcms 代码问题漏洞
Vulnerability Description
蓝智科技 Jspxcms是中国蓝智科技公司的一套可扩展的企业级开源网站内容管理系统(CMS)。 Jspxcms 存在代码问题漏洞,该漏洞源于 UJCMS Jspxcms v10.2.0 的 ${freemarker.template.utility.Execute?new() 中的漏洞允许攻击者通过上传恶意文件来执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A