Description
An issue found in OpenGoofy Hippo4j v.1.4.3 allows attackers to escalate privileges via the ThreadPoolController of the tenant Management module.
Remediation
References
https://github.com/opengoofy/hippo4j/issues/1059
Related Vulnerabilities
CVE-2013-2115 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2020-13444 Vulnerability in maven package com.liferay:com.liferay.dynamic.data.mapping.service
CVE-2010-5312 Vulnerability in maven package org.webjars:jquery-ui