Remote Code Execution via Article in KENT-WEB Joyful Note before 5.3

CVE-2015-0889 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

KENT-WEB Joyful Note before 5.3 allows remote attackers to delete files or write to files, and consequently execute arbitrary code, via vectors involving an article.

Learn more about our Web App Pen Testing.