CVE-2021-33990 | Liferay Portal 6.2.5 ommand=FileUpload&Type=File&CurrentFolder= absolute path traversal (Exploit 171701 / EDB-51244)
A vulnerability was found in Liferay Portal 6.2.5. It has been declared as problematic. This vulnerability affects unknown code of the file Command=FileUpload&Type=File&CurrentFolder=/. The manipulation leads to path traversal: '/absolute/pathname/here'.
This vulnerability was named CVE-2021-33990. The attack can only be done within the local network. Furthermore, there is an exploit available.