CVE-2023-29635

CVSS V2 None CVSS V3 None

Description

File upload vulnerability in Antabot White-Jotter v0.2.2, allows remote attackers to execute malicious code via the file parameter to function coversUpload.

Overview

CVE ID
CVE-2023-29635

Assigner
cve@mitre.org

Vulnerability Status
Received

Published Version
2023-05-01T16:15:11

Last Modified Date
2023-05-01T16:15:11

References

Reference URL	Reference Tags
https://github.com/Antabot/White-Jotter/blob/c1c5d66fda090b986b8f46a7132d403e3b038c5d/wj/src/main/java/com/gm/wj/controller/LibraryController.java#L63
https://github.com/Antabot/White-Jotter/issues/157

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-29635
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29635

History

Created	Old Value	New Value	Data Type	Notes
2023-05-01 17:01:29				Added to TrackCVE