CVE-2024-42054 | Cervantes up to 0.5-alpha unrestricted upload

Inserito da Angelo Barbosa | Lug 28, 2024 | CVE

A vulnerability was found in Cervantes up to 0.5-alpha and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to unrestricted upload.

This vulnerability is handled as CVE-2024-42054. The attack can only be done within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-42054 | Cervantes up to 0.5-alpha unrestricted upload

Post correlati

CVE-2023-37233 | Loftware Spectrum up to 4.6 HF13 xml external entity reference

CVE-2023-46496 | EverShop NPM up to 1.0.0-rc.7 Request api/files DELETE path traversal

CVE-2024-27035 | Linux Kernel up to 6.1.82/6.6.22/6.7.10/6.8.1 f2fs memory corruption

CVE-2024-33546 | AA-Team WZone Plugin up to 14.0.10 on WordPress sql injection