Description
In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerable to a reflected file download (RFD) attack when it sets a "Content-Disposition" header in the response where the filename attribute is derived from user supplied input.
Remediation
References
Related Vulnerabilities
MySQL CVE-2016-0597 Vulnerability (CVE-2016-0597)
Oracle Application Server Other Vulnerability (CVE-2007-0289)
WordPress Plugin User Rights Access Manager Security Bypass (1.0.5)
Joomla! Core 3.9.x Cross-Site Scripting (3.9.0 - 3.9.23)
WordPress Plugin PhotoSmash Galleries Arbitrary File Upload (1.0.7)