Filecatalyst Malicious =link= Jun 2026

: Discovered in June 2024, this flaw allows unauthenticated attackers to modify application data, including creating new administrative accounts with full privileges.

: An attacker can bypass security restrictions to upload a specially crafted, malicious file (such as a JSP shell) into the server’s web root directory. filecatalyst malicious