Unrestricted file upload vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 allows remote authenticated users to execute arbitrary JSP code via vectors involving an upload of an image file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
infinite automation systems mango automation 2.5.5 |
||
infinite automation systems mango automation 2.5.0 |
||
infinite automation systems mango automation 2.6.0 |