Home
Description
An issue in Aetopia Digital Asset Management DAM v.1.0.0 allows a remote attacker to execute arbitrary code via the name and description parameter of the Add/Update Project function
References
www.aetopia.com/solutions/industry/enterprise-dam
eslam3kl.gitbook.io/...ia-dam-server-side-template-injection