The Upload File functionality in upload.jspa in Aurea Jive Jive-n 9.0.2.1 On-Premises allows for an XML External Entity attack through a crafted file, allowing malicious users to read arbitrary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
aurea jive-n 9.0.2.1 |