CVE-2022-34549 Information

Description

Sims v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /uploadServlet. This vulnerability allows attackers to escalate privileges and execute arbitrary commands via a crafted file.

Reference

http://cwe.mitre.org/data/definitions/434.html https://github.com/rawchen/sims/issues/6