Critical severity9.8NVD Advisory· Published Feb 4, 2022· Updated Jun 17, 2026
CVE-2022-23329
CVE-2022-23329
Description
A vulnerability in ${"freemarker.template.utility.Execute"?new() of UJCMS Jspxcms v10.2.0 allows attackers to execute arbitrary commands via uploading malicious files.
Affected products
2- UJCMS/Jspxcmsdescription
Patches
Vulnerability mechanics
References
1- gitee.com/jspxcms/Jspxcms/issues/I4QAZNnvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.