Unrestricted file upload vulnerability in ui/artifact/upload in JFrog Artifactory prior to 4.16 allows remote malicious users to (1) deploy an arbitrary servlet application and execute arbitrary code by uploading a war file or (2) possibly write to arbitrary files and cause a denial of service by uploading an HTML file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jfrog artifactory |