Description
Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execute arbitrary code by uploading and accessing a JSP file.
Remediation
References
Related Vulnerabilities
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9410)
WordPress Plugin Safe SVG Cross-Site Scripting (1.9.5)
phpMyAdmin Cleartext Storage of Sensitive Information Vulnerability (CVE-2008-1567)
Drupal Core 6.x Denial of Service (6.0 - 6.32)
XOOPS Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4851)