Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2023-01-26	CVE-2022-40037	Unrestricted Upload of File with Dangerous Type vulnerability in Javaweb Blog Project Javaweb Blog 1.0 An issue discovered in Rawchen blog-ssm v1.0 allows remote attacker to escalate privileges and execute arbitrary commands via the component /upFile. network low complexity javaweb-blog-project CWE-434 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.