CVE-2026-36762
UNKNOWN
NVD
CVSS Score
0
Severity
UNKNOWN
Published
Apr 30, 2026
Vendor
unknown
Description
An issue in the fileEntityId parameter in the /a/file/upload endpoint of JeeSite v5.15.1 allows authenticated attackers with file upload permissions to execute a path traversal and write arbitrary files with whitelisted suffixes to arbitrary filesystem locations.