CVE-2023-40980 Information

Description

File Upload vulnerability in DWSurvey DWSurvey-OSS v.3.2.0 and before allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file.

Reference

https://github.com/wkeyuan/DWSurvey/issues/107