GAT-Ship Web Module versions prior to 1.40 suffer from an unrestricted file upload vulnerability.
29b659482027b40950b1a55c4531b6749375a0bdfd8e2c1ecbc694deaca21696GAT-Ship Web Module before the current version (1.40) suffers from a vulnerability allowing authenticated attackers to
upload any file type to the server via the "Documents" area. This vulnerability is related to "uploadDocFile.aspx"
Fix:
Upgrade to 1.40
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed