Directory traversal vulnerability in the file upload functionality in ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote malicious users to upload and execute arbitrary JSP files via a .. (dot dot) in the fileName parameter to servlets/FileUploadServlet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zohocorp webnms framework 5.2 |