Description
Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execute arbitrary code by uploading and accessing a JSP file.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP DS FAQ 'ajax.php' SQL Injection (1.3.2)
WordPress Plugin Contact Form Email Cross-Site Scripting (1.3.24)
WordPress Plugin WP Idea Stream Cross-Site Scripting (2.1.1)
WordPress 4.3.x Prototype Pollution (4.3 - 4.3.27)
WordPress Plugin Duplicator-WordPress Migration Remote Code Execution (1.2.40)