CVE-2024-3739 | cym1102 nginxWebUI up to 3.9.9 /adminPage/main/upload file os command injection

Inserito da Angelo Barbosa | Apr 12, 2024 | CVE

A vulnerability classified as critical was found in cym1102 nginxWebUI up to 3.9.9. This vulnerability affects unknown code of the file /adminPage/main/upload. The manipulation of the argument file leads to os command injection.

This vulnerability was named CVE-2024-3739. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-3739 | cym1102 nginxWebUI up to 3.9.9 /adminPage/main/upload file os command injection

Post correlati

CVE-2024-32999 | Huawei HarmonyOS/EMUI OS Security Module logic error

CVE-2023-7213 | Totolink N350RT 9.3.5u.6139_B20201216 HTTP POST Request cstecgi.cgi main v33 stack-based overflow

CVE-2024-45825 | Rockwell Automation 5015-U8IHFT 1.011/1.012 CIP Packet denial of service

CVE-2024-1338 | ImageRecycle PDF & Image Compression Plugin up to 3.1.13 on WordPress Setting stopOptimizeAll cross-site request forgery