CVE-2023-29635 Information

Description

File upload vulnerability in Antabot White-Jotter v0.2.2 allows remote attackers to execute malicious code via the file parameter to function coversUpload.

Reference

https://github.com/Antabot/White-Jotter/issues/157 https://github.com/Antabot/White-Jotter/blob/c1c5d66fda090b986b8f46a7132d403e3b038c5d/wj/src/main/java/com/gm/wj/controller/LibraryController.java#L63