ProductNews
New Features

New Plug-in for Detecting Command Execution Vulnerability in Weaver OA e-cology

Sep 19 2019

A new plug-in is released to detect the command execution vulnerability in Weaver OA e-cology. We recommend that you perform security checks.
Content

Target customers: users who use Weaver OA e-cology versions 7.0, 8.0, and 8.1. Features released: In Weaver OA e-cology, Resin is installed and the invoker servlet is enabled by default. The resin.conf file contains the configuration that allows users to invoke the servlet in CLASSPATH based on the class name when they access /weaver/className, thereby executing commands. We recommend that users of this component perform security checks.

Previous

Supports Disk Encryption

Next

Provides New Instance Types

7th Gen ECS Is Now Available

Increase instance computing power by up to 40% and Fully equipped with TPM chips.
Powered by Third-generation Intel® Xeon® Scalable processors (Ice Lake).

Start Now

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More