CVE-2021-44094

Published November 28th, 2021

View on NVD ↗

CVSS v3

7.8

HIGH

CVSS v2

6.8

MEDIUM

Affected

1

PROJECT

Description

ZrLog 2.2.2 has a remote command execution vulnerability at plugin download function, it could execute any JAR file

ZrLog 是一款基于 Java 的开源博客系统。它提供文章、分类、标签、评论、主题、插件、静态化和在线升级等功能，内置 Markdown 编辑器，管理界面基于 React 和 Ant Design 构建。

GitHub

399