Description
Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execute arbitrary code by uploading and accessing a JSP file.
Remediation
References
Related Vulnerabilities
WordPress 2.8.4 Denial of Service Vulnerability (0.6.2 - 2.8.4)
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29209)
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1454)
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-4625)