RSS   Podatności dla 'BBS'   RSS

2022-03-28
 
CVE-2021-43097

CWE-74
 

 
A Server-side Template Injection (SSTI) vulnerability exists in bbs 5.3 in TemplateManageAction.javawhich could let a malicoius user execute arbitrary code.

 
 
CVE-2021-43098

CWE-434
 

 
A File Upload vulnerability exists in bbs v5.3 via QuestionManageAction.java in a getType function.

 
 
CVE-2021-43099

CWE-22
 

 
An Archive Extraction (AKA "Zip Slip) vulnerability exists in bbs 5.3 in the UpgradeNow function in UpgradeManageAction.java, which unzips the arbitrary upladed zip file without checking filenames. The vulnerability is exploited using a specially crafted archive that holds directory traversal filenames (e.g. ../../evil.exe).

 
 
CVE-2021-43100

CWE-434
 

 
A File Upload vulnerability exists in bbs 5.3 is via TopicManageAction.java in a GetType function, which lets a remote malicious user execute arbitrary code.

 
 
CVE-2021-43101

CWE-434
 

 
A File Upload vulnerability exists in bbs 5.3 is via MembershipCardManageAction.java in a GetType function, which lets a remote malicious user execute arbitrary code.

 
 
CVE-2021-43102

CWE-434
 

 
A File Upload vulnerability exists in bbs 5.3 is via HelpManageAction.java in a GetType function, which lets a remote malicious user execute arbitrary code.

 
 
CVE-2021-43103

CWE-434
 

 
A File Upload vulnerability exists in bbs 5.3 is via ForumManageAction.java in a GetType function, which lets a remote malicious user execute arbitrary code.

 


Copyright 2024, cxsecurity.com

 

Back to Top