CVE-2024-1034 | openBI up to 1.0.8 File.php uploadFile unrestricted upload

Inserito da Angelo Barbosa | Gen 29, 2024 | CVE

A vulnerability, which was classified as critical, was found in openBI up to 1.0.8. This affects the function uploadFile of the file /application/index/controller/File.php. The manipulation leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2024-1034. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-1034 | openBI up to 1.0.8 File.php uploadFile unrestricted upload

Post correlati

CVE-2024-24849 | Quicksand Post Filter jQuery Plugin up to 3.1.1 on WordPress renderAdmin cross-site request forgery

CVE-2024-43156 | AddonMaster Post Grid Master Plugin up to 3.4.10 on WordPress cross site scripting

CVE-2024-32576 | Booking Algorithms BA Book Everything Plugin up to 1.6.8 on WordPress cross site scripting

CVE-2023-6808 | Booking for Appointments and Events Calendar Plugin Shortcode cross site scripting