High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-04-27	CVE-2018-10469	Unrestricted Upload of File with Dangerous Type vulnerability in B3Log Symphony 2.6.0 b3log Symphony (aka Sym) 2.6.0 allows remote attackers to upload and execute arbitrary JSP files via the name[] parameter to the /upload URI. network low complexity b3log CWE-434	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.