TinyMCE.JBimages.Plugin.Arbitrary.File.Upload
Description
This indicates an attack attempt to exploit an Arbitrary File Upload Vulnerability in TinyMCE JBimages Plugin (JustBoil.me).
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote unauthenticated attacker could exploit this vulnerability by uploading and accessing a specially crafted file, which can lead to arbitrary code execution on the vulnerable system.
Affected Products
TinyMCE JBimages Plugin Version 5 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are not aware any vendor provided patch to address this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |