THREATOPS
THREAT OPSCVEs › CVE-2021-26828

CVE-2021-26828 — OpenPLC ScadaBR Unrestricted Upload of File with Dangerous Type Vulnerability

CISA KEVExploited: confirmedOpenPLC

OpenPLC ScadaBR contains an unrestricted upload of file with dangerous type vulnerability that allows remote authenticated users to upload and execute arbitrary JSP files via view_edit.shtm.

Vulnerability details