Unrestricted file upload vulnerability in JSPWiki 2.4.104 and 2.5.139 allows remote attackers to upload and execute arbitrary .jsp files via an unspecified manipulation that attaches a .jsp file to an "entry page."
Software | From | Fixed in |
---|---|---|
jspwiki / jspwiki | 2.4.104 | 2.4.104.x |
jspwiki / jspwiki | 2.5.139 | 2.5.139.x |
jspwiki / jspwiki | 2.5.139_beta | 2.5.139_beta.x |