Getrailo - Railo CVE

Filtered by vendor Getrailo Subscribe

Filtered by product Railo

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-5468	1 Getrailo	1 Railo	2024-02-04	6.8 MEDIUM	8.8 HIGH
A File Inclusion vulnerability exists in Railo 4.2.1 and earlier via a specially-crafted URL request to the thumbnail.cfm to specify a malicious PNG file, which could let a remote malicious user obtain sensitive information or execute arbitrary code.

Vulnerabilities (CVE)