{"id":"CVE-2023-29635","details":"File upload vulnerability in Antabot White-Jotter v0.2.2, allows remote attackers to execute malicious code via the file parameter to function coversUpload.","modified":"2026-04-12T08:15:54.792770Z","published":"2023-05-01T16:15:11.240Z","references":[{"type":"ADVISORY","url":"https://github.com/Antabot/White-Jotter/issues/157"},{"type":"FIX","url":"https://github.com/Antabot/White-Jotter/blob/c1c5d66fda090b986b8f46a7132d403e3b038c5d/wj/src/main/java/com/gm/wj/controller/LibraryController.java#L63"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/antabot/white-jotter","events":[{"introduced":"0"},{"last_affected":"e71e24f5bee9e9422963e030387b2344d8bc2f89"}],"database_specific":{"cpe":"cpe:2.3:a:antabot_white-jotter_project:antabot_white-jotter:0.2.2:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"last_affected":"0.2.2"}]}}],"versions":["v0.2.2"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-29635.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}