Description
Unrestricted file upload vulnerability in ui/artifact/upload in JFrog Artifactory before 4.16 allows remote attackers to (1) deploy an arbitrary servlet application and execute arbitrary code by uploading a war file or (2) possibly write to arbitrary files and cause a denial of service by uploading an HTML file.
Remediation
References
Related Vulnerabilities
Apache Tomcat Improper Privilege Management Vulnerability (CVE-2020-1938)
Jenkins Missing Authorization Vulnerability (CVE-2021-21687)
Internet Information Services Other Vulnerability (CVE-1999-0281)
phpMyAdmin CVE-2013-3238 Vulnerability (CVE-2013-3238)
WordPress Cleartext Storage of Sensitive Information Vulnerability (CVE-2017-14990)