Jenzabar JICS (aka Internet Campus Solution) prior to 9 allows remote malicious users to upload and execute arbitrary .aspx code by placing it in a ZIP archive and using the MoxieManager (for .NET) plugin prior to 2.1.4 in the moxiemanager directory within the installation folder ICS\ICS.NET\ICSFileServer.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jenzabar internet campus solution 9 |
||
tiny moxiemanager |