CVE-2023-50982 | Stud.IP up to 5.0.8/5.1.6/5.2.5/5.3.3 upload_action/edit_action unrestricted upload

Inserito da Angelo Barbosa | Gen 8, 2024 | CVE

A vulnerability classified as critical has been found in Stud.IP up to 5.0.8/5.1.6/5.2.5/5.3.3. Affected is the function upload_action/edit_action. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2023-50982. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-50982 | Stud.IP up to 5.0.8/5.1.6/5.2.5/5.3.3 upload_action/edit_action unrestricted upload

Post correlati

CVE-2024-5241 | Huashi Private Cloud CDN Live Streaming Acceleration Server ipconfig_new.php os command injection

CVE-2024-37086 | VMware ESXi/Cloud Foundation out-of-bounds

CVE-2023-36696 | Microsoft Windows up to Server 2022 23H2 Cloud Files Mini Filter Driver Local Privilege Escalation

CVE-2024-33272 | autosuggest Module up to 1.x on PrestaShop initContent sql injection