CVE-2022-23329 · Vexday

CVE-2022-23329

EPSS 14.4%

A vulnerability in ${"freemarker.template.utility.Execute"?new() of UJCMS Jspxcms v10.2.0 allows attackers to execute arbitrary commands via uploading malicious files.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gitee.com/jspxcms/Jspxcms/issues/I4QAZN